← Back

CVE-2007-0031

nvd nist
Published: Jan 9, 2007Modified: Apr 23, 2026

JSON object

Loading...
9.3
Vector
AV:N/AC:M/Au:N/C:C/I:C/A:C
Exploitability: 8.6 / Impact: 10.0
Source: NVD

Description

Heap-based buffer overflow in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and v.X for Mac allows user-assisted remote attackers to execute arbitrary code via a BIFF8 spreadsheet with a PALETTE record that contains a large number of entries.

Affected (11)

Microsoft
4 products
Excel
Office
Excel Viewer
Works
Configuration A
2 vulnerable
Vulnerable SoftwareAffected Versions
Excel
Version 2000
Office
Version 2000 sp3
Configuration B
2 vulnerable
Vulnerable SoftwareAffected Versions
Excel
Version 2002
Office
Version xp sp3
Configuration C
2 vulnerable
Vulnerable SoftwareAffected Versions
Excel
Version 2003
Office
Version 2003 sp2
Configuration D
3 vulnerable
Vulnerable SoftwareAffected Versions
Excel Viewer
Version 2003
Microsoft
Works
Version 2004
Works
Version 2005
Configuration E
2 vulnerable
Vulnerable SoftwareAffected Versions
Microsoft
Office
Version 2004
Office
Version v.x

References (20)

Source: secure@microsoft.com
PatchVendor Advisory
Source: secure@microsoft.com
Source: secure@microsoft.com
US Government Resource
Source: secure@microsoft.com
Source: secure@microsoft.com
Source: secure@microsoft.com
Source: secure@microsoft.com
US Government Resource
Source: secure@microsoft.com
Source: secure@microsoft.com
Source: secure@microsoft.com
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.