CVE-2007-3030

Name of the Vulnerable Software and Affected Versions: Microsoft Excel versions 2000 SP3, 2002 SP3, 2003 SP2, and 2003 Viewer

Description: A remote code execution issue exists in the way Excel handles malformed Excel files, potentially allowing attackers to execute arbitrary code via a malformed file, which could result in memory corruption. This could be exploited by sending a malformed file as an e-mail attachment or hosting it on a malicious Web site.

Recommendations: For Microsoft Excel 2000 SP3, 2002 SP3, and 2003 SP2, as well as 2003 Viewer, avoid opening or processing malformed Excel files until a fix is available. As a temporary workaround, consider restricting the handling of Excel files from untrusted sources to minimize the risk of exploitation.