|
|
CVE Reference: CVE-2008-3004 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2008-3004 |
|
|
Description: Microsoft Office Excel 2000 SP3, 2002 SP3, and 2003 SP2 and SP3; Office Excel Viewer 2003; and Office 2004 and 2008 for Mac do not properly validate index values for AxesSet records when loading Excel files, which allows remote attackers to execute arbitrary code via a crafted Excel file, aka the "Excel Indexing Validation Vulnerability." |
|
|
CVE Status: Candidate |
|
|
References: ST 1020670 SAID Secunia Advisory: SA31454 OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:5885 MS http://www.microsoft.com/technet/security/Bulletin/MS08-043.mspx IDEFENSE http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=740 HP http://marc.info/?l=bugtraq&m=121915960406986&w=2 CERT http://www.us-cert.gov/cas/techalerts/TA08-225A.html BID 30638 |
|
| Return to the previous page. |
