VYPR

Excel Viewer

by Microsoft

CVEs (148)

  • CVE-2006-3877Oct 10, 2006
    risk 0.01cvss epss 0.12

    Unspecified vulnerability in PowerPoint in Microsoft Office 2000, Office 2002, Office 2003, Office 2004 for Mac, and Office v.X for Mac allows user-assisted attackers to execute arbitrary code via an unspecified "crafted file," a different vulnerability than CVE-2006-3435,…

  • CVE-2006-1309Jul 13, 2006
    risk 0.01cvss epss 0.10

    Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted LABEL record that triggers memory corruption.

  • CVE-2006-1301Jul 13, 2006
    risk 0.01cvss epss 0.10

    Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted SELECTION record that triggers memory corruption, a different vulnerability than CVE-2006-1302.

  • CVE-2006-1308Jul 13, 2006
    risk 0.01cvss epss 0.09

    Unspecified vulnerability in Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted FNGROUPCOUNT value.

  • CVE-2006-1302Jul 13, 2006
    risk 0.01cvss epss 0.14

    Buffer overflow in Microsoft Excel 2000 through 2003 allows user-assisted attackers to execute arbitrary code via a .xls file with certain crafted fields in a SELECTION record, which triggers memory corruption, aka "Malformed SELECTION record Vulnerability."

  • CVE-2006-2388Jul 13, 2006
    risk 0.01cvss epss 0.11

    Microsoft Office Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via malformed cell comments, which lead to modification of "critical data offsets" during the rebuilding process.

  • CVE-2006-1304Jul 13, 2006
    risk 0.01cvss epss 0.11

    Buffer overflow in Microsoft Excel 2000 through 2003 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted COLINFO record, which triggers the overflow during a "data filling operation."

  • CVE-2006-1306Jul 13, 2006
    risk 0.01cvss epss 0.09

    Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted BIFF record with an attacker-controlled array index that is used for a function pointer, aka "Malformed OBJECT record Vulnerability."

Page 8 of 8