CVE-2008-3006 (Office, office_excel_viewer, office_compatibility

CVE-2008-3006 (Office, office_excel_viewer, office_compatibility_pack, SharePoint Server)
BugsAlert Home > CVE-2008-3006 (Office, office_excel_viewer, office_compatibility_pack, SharePoint Server)




Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP2 and SP3, and 2007 Gold and SP1; Office Excel Viewer 2003 Gold and SP3; Office Excel Viewer; Office Compatibility Pack 2007 Gold and SP1; Office SharePoint Server 2007 Gold and SP1; and Office 2004 and 2008 for Mac do not properly parse record values when loading Excel files, which allows remote attackers to execute arbitrary code via a crafted Excel file, aka the "Excel Record Parsing Vulnerability." Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3006 Learn more about CVE-2008-3006 (Office, office_excel_viewer, office_compatibility_pack, SharePoint Server)


Tags: cve-2008-3006 office office excel viewer office compatibility pack sharepoint server

Related Items
Microsoft Security Advisory (955179): Vulnerability in the ActiveX Control for the Snapshot Viewer for Microsoft Access Could Allow Remote Code Execution - 7/7/2008
Debian: New inotify-tools packages fix arbitrary code
Merrill Lynch?s Rock Phish Digital Certificate
Bugtraq: Buffer-overflow in BootManage TFTPD 1.99
CVE-2008-0146 (W3-mSQL)
FrSIRT - Page Manager "upload.php" Arbitrary File Upload Vulnerability
Database matching order permits host-based authentication to be ignored

CVE-2008-3006 (Office, office_excel_viewer, office_compatibility_pack, SharePoint Server)