Unrated severityNVD Advisory· Published Jul 13, 2006· Updated Apr 16, 2026

CVE-2006-1302

Description

Buffer overflow in Microsoft Excel 2000 through 2003 allows user-assisted attackers to execute arbitrary code via a .xls file with certain crafted fields in a SELECTION record, which triggers memory corruption, aka "Malformed SELECTION record Vulnerability."

Affected products

Microsoft/Excel12 versions
cpe:2.3:a:microsoft:excel:2000:*:*:*:*:*:*:*+ 11 more
- cpe:2.3:a:microsoft:excel:2000:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:excel:2000:sp2:*:*:*:*:*:*
- cpe:2.3:a:microsoft:excel:2000:sp3:*:*:*:*:*:*
- cpe:2.3:a:microsoft:excel:2000:sr1:*:*:*:*:*:*
- cpe:2.3:a:microsoft:excel:2002:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:excel:2002:sp1:*:*:*:*:*:*
- cpe:2.3:a:microsoft:excel:2002:sp2:*:*:*:*:*:*
- cpe:2.3:a:microsoft:excel:2002:sp3:*:*:*:*:*:*
- cpe:2.3:a:microsoft:excel:2003:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:excel:2003:sp1:*:*:*:*:*:*
- cpe:2.3:a:microsoft:excel:2004:*:mac_os_x:*:*:*:*:*
- cpe:2.3:a:microsoft:excel:x:*:mac_os_x:*:*:*:*:*
Microsoft/Excel Viewer
cpe:2.3:a:microsoft:excel_viewer:2003:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.032
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000