VYPR
Unrated severityNVD Advisory· Published Dec 10, 2008· Updated Jun 16, 2026

CVE-2008-4266

CVE-2008-4266

Description

Array index vulnerability in Microsoft Office Excel 2000 SP3, 2002 SP3, and 2003 SP3; Excel Viewer 2003 Gold and SP3; Office 2004 and 2008 for Mac; and Open XML File Format Converter for Mac allow remote attackers to execute arbitrary code via an Excel spreadsheet with a NAME record that contains an invalid index value, which triggers stack corruption, aka "Excel Global Array Memory Corruption Vulnerability."

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

12
  • Microsoft/Excel3 versions
    cpe:2.3:a:microsoft:excel:2000:sp3:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:microsoft:excel:2000:sp3:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:excel:2002:sp3:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:excel:2003:sp3:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:excel_viewer:2003:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:microsoft:excel_viewer:2003:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:excel_viewer:2003:sp3:*:*:*:*:*:*
    • (no CPE)range: 2003 Gold and SP3
  • Microsoft/Office3 versions
    cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*+ 2 more
    • cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*
    • cpe:2.3:a:microsoft:office:2008:*:mac:*:*:*:*:*
    • (no CPE)range: 2004 and 2008 for Mac
  • cpe:2.3:a:microsoft:open_xml_file_format_converter:*:*:mac:*:*:*:*:*+ 1 more
    • cpe:2.3:a:microsoft:open_xml_file_format_converter:*:*:mac:*:*:*:*:*
    • (no CPE)
  • Range: 2000 SP3, 2002 SP3, 2003 SP3

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.