CVE Vulnerabilities

CVE-2008-4266

Published: Dec 10, 2008 | Modified: Oct 12, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Array index vulnerability in Microsoft Office Excel 2000 SP3, 2002 SP3, and 2003 SP3; Excel Viewer 2003 Gold and SP3; Office 2004 and 2008 for Mac; and Open XML File Format Converter for Mac allow remote attackers to execute arbitrary code via an Excel spreadsheet with a NAME record that contains an invalid index value, which triggers stack corruption, aka Excel Global Array Memory Corruption Vulnerability.

Affected Software

Name Vendor Start Version End Version
Open_xml_file_format_converter Microsoft * *
Office Microsoft 2008 2008
Office Microsoft 2004 2004
Excel_viewer Microsoft 2003 2003
Excel Microsoft 2000 2000
Excel_viewer Microsoft 2003 2003
Excel Microsoft 2002 2002
Excel Microsoft 2003 2003

References