CVE-2008-3471

Stack-based buffer overflow in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2 and SP3, and 2007 Gold and SP1; Office Excel Viewer 2003 SP3; Office Excel Viewer; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office 2004 and 2008 for Mac; and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via a BIFF file with a malformed record that triggers a user-influenced size calculation, aka "File Format Parsing Vulnerability."
Configurations

Configuration 1

cpe:2.3:a:microsoft:excel:2007:sp1:*:*:*:*:*:*
cpe:2.3:a:microsoft:office_compatibility_pack:2007:sp1:*:*:*:*:*:*
cpe:2.3:a:microsoft:excel_viewer:2003:sp3:*:*:*:*:*:*
cpe:2.3:a:microsoft:excel:2003:sp3:*:*:*:*:*:*
cpe:2.3:a:microsoft:excel:2003:sp2:*:*:*:*:*:*
cpe:2.3:a:microsoft:excel_viewer:-:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:office_compatibility_pack:2007:-:*:*:*:*:*:*
cpe:2.3:a:microsoft:office:2008:*:*:*:*:macos:*:*
cpe:2.3:a:microsoft:open_xml_file_format_converter:-:*:*:*:*:macos:*:*
cpe:2.3:a:microsoft:office:2004:*:*:*:*:macos:*:*
cpe:2.3:a:microsoft:excel:2007:-:*:*:*:*:*:*
cpe:2.3:a:microsoft:excel_viewer:2003:-:*:*:*:*:*:*

Information

Published : 2008-10-15 12:12

Updated : 2022-02-09 07:22


NVD link : CVE-2008-3471

Mitre link : CVE-2008-3471

Products Affected
No products.
CWE