Total vulnerabilities in the database
Microsoft Office Excel 2002 SP3, 2007 SP1, and SP2; Office 2004 for mac; Office 2008 for Mac; Open XML File Format Converter for Mac; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2; allows remote attackers to execute arbitrary code via an Excel file with crafted DBQueryExt records that allow a function call to a "user-controlled pointer," aka "Excel ADO Object Vulnerability."
| Software | From | Fixed in |
|---|---|---|
| microsoft / excel | 2007-sp2 | 2007-sp2.x |
| microsoft / excel | 2007-sp1 | 2007-sp1.x |
| microsoft / excel | 2002-sp3 | 2002-sp3.x |
| microsoft / open_xml_file_format_converter | - | - |
| microsoft / office | 2008 | 2008.x |
| microsoft / office | 2004 | 2004.x |
| microsoft / office_compatibility_pack | 2007-sp2 | 2007-sp2.x |
| microsoft / office_compatibility_pack | 2007-sp1 | 2007-sp1.x |