Microsoft Office Excel 2007 SP1 and SP2 and Office 2004 for Mac do not properly parse the Excel file format, which allows remote attackers to execute arbitrary code via a crafted spreadsheet that triggers access of an uninitialized stack variable, aka "Microsoft Office Excel FNGROUPNAME Record Uninitialized Memory Vulnerability."
Software | From | Fixed in |
---|---|---|
microsoft / office | 2004 | 2004.x |
microsoft / office | 2008 | 2008.x |
microsoft / excel | 2002-sp3 | 2002-sp3.x |
microsoft / excel | 2003-sp3 | 2003-sp3.x |
microsoft / excel | 2007-sp1 | 2007-sp1.x |
microsoft / excel | 2007-sp2 | 2007-sp2.x |
microsoft / office_excel_viewer | - | - |
microsoft / office_compatibility_pack | 2007-sp1 | 2007-sp1.x |
microsoft / office_compatibility_pack | 2007-sp2 | 2007-sp2.x |
microsoft / open_xml_file_format_converter | - | - |
microsoft / office_sharepoint_server | 2007-sp1 | 2007-sp1.x |
microsoft / office_sharepoint_server | 2007-sp2 | 2007-sp2.x |