Excel

excel

Vendor: Microsoft • 405 CVEs

CVEs (405)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2007-3490 1Microsoft 1Excel Apr 23, 2026 Jun 29, 2007 N/A· v4 N/A· v3 7.5 HIGH· v2 Unspecified vulnerability in Microsoft Excel 2003 SP2 allows remote attackers to have an unknown impact via unspecified vectors, possibly related to the sheet name, as demonstrated by 2670.xls.
CVE-2007-1214 1Microsoft 2Excel Excel Viewer Apr 23, 2026 May 8, 2007 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2003 Viewer, and 2004 for Mac allows user-assisted remote attackers to execute arbitrary code via a crafted AutoFilter filter record in an Excel BIFF8 format XLS file, which...Show more Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2003 Viewer, and 2004 for Mac allows user-assisted remote attackers to execute arbitrary code via a crafted AutoFilter filter record in an Excel BIFF8 format XLS file, which triggers memory corruption.Show less
CVE-2007-1203 1Microsoft 2Excel Excel Viewer Apr 23, 2026 May 8, 2007 N/A· v4 N/A· v3 9.3 HIGH· v2 Unspecified vulnerability in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2003 Viewer, 2004 for Mac, and 2007 allows user-assisted remote attackers to execute arbitrary code via a crafted set font value in an Excel file...Show more Unspecified vulnerability in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2003 Viewer, 2004 for Mac, and 2007 allows user-assisted remote attackers to execute arbitrary code via a crafted set font value in an Excel file, which results in memory corruption.Show less
CVE-2007-0215 1Microsoft 3Excel Excel ViewerOffice Apr 23, 2026 May 8, 2007 N/A· v4 N/A· v3 7.6 HIGH· v2 Stack-based buffer overflow in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, and 2003 Viewer allows user-assisted remote attackers to execute arbitrary code via a .XLS BIFF file with a malformed Named Graph record, which...Show more Stack-based buffer overflow in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, and 2003 Viewer allows user-assisted remote attackers to execute arbitrary code via a .XLS BIFF file with a malformed Named Graph record, which results in memory corruption.Show less
CVE-2007-1239 1Microsoft 1Excel Apr 23, 2026 Mar 3, 2007 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Microsoft Excel 2003 does not properly parse .XLS files, which allows remote attackers to cause a denial of service (application crash) via a file with a (1) corrupted XML format or a (2) corrupted XLS format, which trig...Show more Microsoft Excel 2003 does not properly parse .XLS files, which allows remote attackers to cause a denial of service (application crash) via a file with a (1) corrupted XML format or a (2) corrupted XLS format, which triggers a NULL pointer dereference.Show less
CVE-2007-0671 1Microsoft 14Access ExcelExcel Viewer+11 more Apr 22, 2026 Feb 3, 2007 N/A· v4 8.8 HIGH· v3 9.3 HIGH· v2 Unspecified vulnerability in Microsoft Excel 2000, XP, 2003, and 2004 for Mac, and possibly other Office products, allows remote user-assisted attackers to execute arbitrary code via unknown attack vectors, as demonstrat...Show more Unspecified vulnerability in Microsoft Excel 2000, XP, 2003, and 2004 for Mac, and possibly other Office products, allows remote user-assisted attackers to execute arbitrary code via unknown attack vectors, as demonstrated by Exploit-MSExcel.h in targeted zero-day attacks.Show less
CVE-2007-0031 1Microsoft 4Excel Excel ViewerOffice+1 more Apr 23, 2026 Jan 9, 2007 N/A· v4 N/A· v3 9.3 HIGH· v2 Heap-based buffer overflow in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and v.X for Mac allows user-assisted remote attackers to execute arbitrary code via a BIFF8 spreadsheet with a PALETTE record that...Show more Heap-based buffer overflow in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and v.X for Mac allows user-assisted remote attackers to execute arbitrary code via a BIFF8 spreadsheet with a PALETTE record that contains a large number of entries.Show less
CVE-2007-0030 1Microsoft 4Excel Excel ViewerOffice+1 more Apr 23, 2026 Jan 9, 2007 N/A· v4 N/A· v3 9.3 HIGH· v2 Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and v.X for Mac allows user-assisted remote attackers to execute arbitrary code via an Excel file with an out-of-range Column field in certain BIFF8 record type...Show more Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and v.X for Mac allows user-assisted remote attackers to execute arbitrary code via an Excel file with an out-of-range Column field in certain BIFF8 record types, which references arbitrary memory.Show less
CVE-2007-0029 1Microsoft 4Excel Excel ViewerOffice+1 more Apr 23, 2026 Jan 9, 2007 N/A· v4 N/A· v3 9.3 HIGH· v2 Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and v.X for Mac allows user-assisted remote attackers to execute arbitrary code via a malformed string, aka "Excel Malformed String Vulnerability."
CVE-2007-0028 1Microsoft 4Excel Excel ViewerOffice+1 more Apr 23, 2026 Jan 9, 2007 N/A· v4 N/A· v3 9.3 HIGH· v2 Microsoft Excel 2000, 2002, 2003, Viewer 2003, Office 2004 for Mac, and Office v.X for Mac does not properly handle certain opcodes, which allows user-assisted remote attackers to execute arbitrary code via a crafted XLS...Show more Microsoft Excel 2000, 2002, 2003, Viewer 2003, Office 2004 for Mac, and Office v.X for Mac does not properly handle certain opcodes, which allows user-assisted remote attackers to execute arbitrary code via a crafted XLS file, which results in an "Improper Memory Access Vulnerability." NOTE: an early disclosure of this issue used CVE-2006-3432, but only CVE-2007-0028 should be used.Show less
CVE-2007-0027 1Microsoft 4Excel Excel ViewerOffice+1 more Apr 23, 2026 Jan 9, 2007 N/A· v4 N/A· v3 9.3 HIGH· v2 Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and v.X for Mac allows remote attackers to execute arbitrary code via malformed IMDATA records that trigger memory corruption.
CVE-2006-3877 1Microsoft 14Access ExcelExcel Viewer+11 more Apr 23, 2026 Oct 10, 2006 N/A· v4 N/A· v3 9.3 HIGH· v2 Unspecified vulnerability in PowerPoint in Microsoft Office 2000, Office 2002, Office 2003, Office 2004 for Mac, and Office v.X for Mac allows user-assisted attackers to execute arbitrary code via an unspecified "crafted...Show more Unspecified vulnerability in PowerPoint in Microsoft Office 2000, Office 2002, Office 2003, Office 2004 for Mac, and Office v.X for Mac allows user-assisted attackers to execute arbitrary code via an unspecified "crafted file," a different vulnerability than CVE-2006-3435, CVE-2006-4694, and CVE-2006-3876.Show less
CVE-2006-3875 1Microsoft 2Excel Excel Viewer Apr 23, 2026 Oct 10, 2006 N/A· v4 N/A· v3 5.1 MEDIUM· v2 Unspecified vulnerability in Microsoft Excel 2000, 2002, 2003, 2004 for Mac, v.X for Mac, and Excel Viewer 2003 allows user-assisted attackers to execute arbitrary code via a crafted COLINFO record in an XLS file, a diff...Show more Unspecified vulnerability in Microsoft Excel 2000, 2002, 2003, 2004 for Mac, v.X for Mac, and Excel Viewer 2003 allows user-assisted attackers to execute arbitrary code via a crafted COLINFO record in an XLS file, a different vulnerability than CVE-2006-2387 and CVE-2006-3867.Show less
CVE-2006-3867 1Microsoft 2Excel Excel Viewer Apr 23, 2026 Oct 10, 2006 N/A· v4 N/A· v3 5.1 MEDIUM· v2 Unspecified vulnerability in Microsoft Excel 2000, 2002, 2003, 2004 for Mac, v.X for Mac, and Excel Viewer 2003 allows user-assisted attackers to execute arbitrary code via a crafted Lotus 1-2-3 file, a different vulnera...Show more Unspecified vulnerability in Microsoft Excel 2000, 2002, 2003, 2004 for Mac, v.X for Mac, and Excel Viewer 2003 allows user-assisted attackers to execute arbitrary code via a crafted Lotus 1-2-3 file, a different vulnerability than CVE-2006-2387 and CVE-2006-3875.Show less
CVE-2006-1309 1Microsoft 2Excel Excel Viewer Apr 16, 2026 Jul 13, 2006 N/A· v4 N/A· v3 9.3 HIGH· v2 Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted LABEL record that triggers memory corruption.
CVE-2006-1308 1Microsoft 2Excel Excel Viewer Apr 16, 2026 Jul 13, 2006 N/A· v4 N/A· v3 9.3 HIGH· v2 Unspecified vulnerability in Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted FNGROUPCOUNT value.
CVE-2006-1301 1Microsoft 2Excel Excel Viewer Apr 16, 2026 Jul 13, 2006 N/A· v4 N/A· v3 9.3 HIGH· v2 Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted SELECTION record that triggers memory corruption, a different vulnerability than CVE-2006-1302.
CVE-2006-2388 1Microsoft 2Excel Excel Viewer Apr 16, 2026 Jul 13, 2006 N/A· v4 N/A· v3 9.3 HIGH· v2 Microsoft Office Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via malformed cell comments, which lead to modification of "critical data offsets" during the rebuilding process.
CVE-2006-1306 1Microsoft 2Excel Excel Viewer Apr 16, 2026 Jul 13, 2006 N/A· v4 N/A· v3 9.3 HIGH· v2 Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted BIFF record with an attacker-controlled array index that is used for a function pointer, aka "Malf...Show more Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted BIFF record with an attacker-controlled array index that is used for a function pointer, aka "Malformed OBJECT record Vulnerability."Show less
CVE-2006-1304 1Microsoft 2Excel Excel Viewer Apr 16, 2026 Jul 13, 2006 N/A· v4 N/A· v3 9.3 HIGH· v2 Buffer overflow in Microsoft Excel 2000 through 2003 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted COLINFO record, which triggers the overflow during a "data filling operation."

Previous 1...17 181920 21 Next