Oval Definition:oval:org.mitre.oval:def:1709
Revision Date:2014-06-30Version:19
Title:Workbook Memory Corruption Vulnerability
Description:Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, and 2003 Viewer allows user-assisted remote attackers to execute arbitrary code via a malformed Excel file involving the "denoting [of] the start of a Workspace designation", which results in memory corruption, aka the "Workbook Memory Corruption Vulnerability".
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2007-3030
Platform(s):Microsoft Windows 2000
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Microsoft Excel
Definition Synopsis
  • Excel 2000
  • Microsoft Excel 2000 is installed
  • AND the version of excel.exe is less than 9.0.0.8963
  • OR Excel 2002
  • Microsoft Excel 2002 is installed
  • AND the version of excel.exe is less than 10.0.6832.0
  • OR Excel 2003
  • Microsoft Excel 2003 is installed
  • AND the version of excel.exe is less than 11.0.8142.0
  • OR Excel Viewer
  • Microsoft Excel Viewer 2003 is installed
  • AND Xlview.exe is installed with a version less than 11.0.8142.0
  • OR MS Office Compatibility Pack
  • Microsoft Office Compatibility Pack is installed
  • AND the version of excelcnv.exe is less than 12.00.6024.5000
    • BACK