New Search

Excel 2000 Remote Code Execution via Malformed File Format

oval:org.mitre.oval:def:1158

Unspecified vulnerability in Microsoft Excel 2000 2002 and 2003 in Microsoft Office 2000 SP3 and other packages allows user-assisted attackers to execute arbitrary code via a BIFF parsing format file containing malformed BOOLERR records that lead to memory corruption probably involving invalid pointers.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 2000
Class:
vulnerability
Reference(s):
  • CVE-2006-0028
Product(s):
  • Microsoft Office