Oval Definition:	oval:org.mitre.oval:def:950
Revision Date: 2012-05-28 Version: 7 Title: Microsoft Excel Malformed OBJECT record Vulnerability Description: Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted BIFF record with an attacker-controlled array index that is used for a function pointer, aka "Malformed OBJECT record Vulnerability." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2006-1306 Platform(s): Microsoft Windows 2000 Microsoft Windows Server 2003 Microsoft Windows XP Product(s): Microsoft Excel Definition Synopsis Excel 2000 Microsoft Excel 2000 is installed AND the version of excel.exe is less than 9.0.0.8946 OR Excel 2002 Microsoft Excel 2002 is installed AND the version of excel.exe is less than 10.0.6809.0 OR Excel 2003 Microsoft Excel 2003 is installed AND the version of excel.exe is less than 11.0.8033.0 OR Excel Viewer Microsoft Excel Viewer 2003 is installed AND the version of xlview.exe is less than 11.0.8033.0.
BACK