Vulnerability Name: CVE-2008-4264 (CCN-46862) Assigned: 2008-12-09 Published: 2008-12-09 Updated: 2018-10-12 Summary: Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Excel Viewer 2003 Gold and SP3; Excel Viewer; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office 2004 and 2008 for Mac; and Open XML File Format Converter for Mac allow remote attackers to execute arbitrary code via a crafted Excel spreadsheet that contains a malformed formula, which triggers "pointer corruption" during the loading of formulas from this spreadsheet, aka "File Format Parsing Vulnerability." http://www.microsoft.com/technet/security/Bulletin/MS08-074.mspx
File Format Parsing Vulnerability - CVE-2008-4264
A remote code execution vulnerability exists in Microsoft Office Excel as a result of pointer corruption when loading Excel formulas. The vulnerability could allow remote code execution if a user opens a specially crafted Excel file that includes a malformed formula. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. CVSS v3 Severity: 10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H )Exploitability Metrics: Attack Vector (AV): NetworkAttack Complexity (AC): LowPrivileges Required (PR): NoneUser Interaction (UI): NoneScope: Scope (S): ChangedImpact Metrics: Confidentiality (C): HighIntegrity (I): HighAvailibility (A): High
CVSS v2 Severity: 9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C )6.9 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C )Exploitability Metrics: Access Vector (AV): NetworkAccess Complexity (AC): MediumAuthentication (Au): NoneImpact Metrics: Confidentiality (C): CompleteIntegrity (I): CompleteAvailibility (A): Complete
9.3 High (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C )6.9 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C )Exploitability Metrics: Access Vector (AV): NetworkAccess Complexity (AC): MediumAthentication (Au): NoneImpact Metrics: Confidentiality (C): CompleteIntegrity (I): CompleteAvailibility (A): Complete
Vulnerability Type: CWE-399 Vulnerability Consequences: Gain Access References: Source: MITRE Type: CNACVE-2008-4264 Source: CCN Type: HP Security Bulletin HPSBST02394 SSRT080183 rev.1Storage Management Appliance (SMA), Microsoft Patch Applicability MS08-070 to MS08-077 Source: CCN Type: SECTRACK ID: 1021368Microsoft Excel Formula, Object, and Global Array Bugs Let Remote Users Execute Arbitrary Code Source: CCN Type: ASA-2008-480MS08-074 Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (959070) Source: CCN Type: Microsoft Security Bulletin MS11-096Vulnerability in Microsoft Excel Could Allow Remote Code Execution (2640241) Source: CCN Type: Microsoft Security Bulletin MS12-028Vulnerability in Microsoft Office Could Allow for Remote Code Execution (2639185) Source: CCN Type: Microsoft Security Bulletin MS12-029Vulnerability in Microsoft Word Could Allow Remote Code Execution (2680352) Source: CCN Type: Microsoft Security Bulletin MS12-057Vulnerability in Microsoft Office Could Allow for Remote Code Execution (2731879) Source: CCN Type: Microsoft Security Bulletin MS12-064Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (2742319) Source: CCN Type: Microsoft Security Bulletin MS12-065Vulnerability in Microsoft Works Could Allow Remote Code Execution (KB2754670) Source: CCN Type: Microsoft Security Bulletin MS12-079Vulnerability in Microsoft Word Could Allow Remote Code Execution (2780642) Source: CCN Type: Microsoft Security Bulletin MS13-043Vulnerability in Microsoft Word Could Allow Remote Code Execution (2830399) Source: CCN Type: Microsoft Security Bulletin MS13-072Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2845537) Source: CCN Type: Microsoft Security Bulletin MS13-085Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2885080) Source: CCN Type: Microsoft Security Bulletin MS13-086Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (2885084) Source: CCN Type: Microsoft Security Bulletin MS14-001Vulnerabilities in Microsoft Word and Office Web Apps Could Allow Remote Code Execution (2916605) Source: CCN Type: Microsoft Security Bulletin MS14-017Vulnerabilities in Microsoft Word and Office Web Apps Could Allow Remote Code Execution (2949660) Source: CCN Type: Microsoft Security Bulletin MS14-034Vulnerability in Microsoft Word Could Allow Remote Code Execution (2969261) Source: CCN Type: Microsoft Security Bulletin MS14-061Vulnerability in Microsoft Word and Office Web Apps Could Allow Remote Code Execution (3000434) Source: CCN Type: Microsoft Security Bulletin MS14-069Vulnerability in Microsoft Office Could Allow Remote Code Execution (3009710) Source: CCN Type: Microsoft Security Bulletin MS14-081Vulnerabilities in Microsoft Word and Office Web Apps Could Allow Remote Code Execution (3017301) Source: CCN Type: Microsoft Security Bulletin MS14-083Vulnerabilities in MicrosoftExcel Could Allow Remote Code Execution (3017347) Source: CCN Type: Microsoft Security Bulletin MS15-081Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3080790) Source: CCN Type: Microsoft Security Bulletin MS15-099Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3089664) Source: CCN Type: Microsoft Security Bulletin MS15-110Security Updates for Microsoft Office (3096440) Source: CCN Type: Microsoft Security Bulletin MS15-116Security Updates for Microsoft Office to Address Remote Code Execution (3104540) Source: CCN Type: Microsoft Security Bulletin MS15-131Security Update for Microsoft Office to Address Remote Code Execution (3116111) Source: CCN Type: Microsoft Security Bulletin MS16-004Security Update for Microsoft Office to Address Remote Code Execution - Critical (3124585) Source: CCN Type: Microsoft Security Bulletin MS16-015Security Update for Microsoft Office to Address Remote Code Execution (3134226) Source: CCN Type: Microsoft Security Bulletin MS16-029Security Update for Microsoft Office to Address Remote Code Execution (3141806) Source: CCN Type: Microsoft Security Bulletin MS16-042Security Update for Microsoft Office (3148775) Source: CCN Type: Microsoft Security Bulletin MS16-054Security Update for Microsoft Office (3155544) Source: CCN Type: Microsoft Security Bulletin MS16-070Security Update for Office (3163610) Source: CCN Type: Microsoft Security Bulletin MS16-088Security Updates for Office (3170008) Source: CCN Type: Microsoft Security Bulletin MS16-099Security Update for Office (3177451) Source: CCN Type: Microsoft Security Bulletin MS16-107Security Update for Microsoft Office (3185852) Source: CCN Type: Microsoft Security Bulletin MS16-121Security Update for Microsoft Office (3194063) Source: CCN Type: Microsoft Security Bulletin MS16-133Security Update for Microsoft Office (3199168) Source: CCN Type: Microsoft Security Bulletin MS16-148Security Update for Microsoft Office (3204068) Source: CCN Type: Microsoft Security Bulletin MS17-002Security Update for Microsoft Office (3214291) Source: CCN Type: Microsoft Security Bulletin MS17-013Security Update for Microsoft Graphics Component (4013075) Source: CCN Type: Microsoft Security Bulletin MS17-014Security Update for Microsoft Office (4013241) Source: CCN Type: Microsoft Security Bulletin MS08-074Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (959070) Source: CCN Type: Microsoft Security Bulletin MS09-009Vulnerabilities in Microsoft Office Excel Could Cause Remote Code Execution (968557) Source: CCN Type: Microsoft Security Bulletin MS09-017Vulnerabilities in Microsoft Office PowerPoint Could Allow Remote Code Execution (967340) Source: CCN Type: Microsoft Security Bulletin MS09-021Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (969462) Source: CCN Type: Microsoft Security Bulletin MS09-027Vulnerabilities in Microsoft Office Word Could Allow Remote Code Execution (969514) Source: CCN Type: Microsoft Security Bulletin MS09-067Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (972652) Source: CCN Type: Microsoft Security Bulletin MS09-068Vulnerability in Microsoft Office Word Allows Remote Code Execution (976307) Source: CCN Type: Microsoft Security Bulletin MS10-004Vulnerabilities in Microsoft Office PowerPoint Could Allow Remote Code Execution (975416) Source: CCN Type: Microsoft Security Bulletin MS10-017Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (980150) Source: CCN Type: Microsoft Security Bulletin MS10-036Vulnerabilities in COM validation in Microsoft Office Could Allow Remote Code Execution (983235 Source: CCN Type: Microsoft Security Bulletin MS10-038Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (2027452) Source: CCN Type: Microsoft Security Bulletin MS10-056Vulnerabilities in Microsoft Office Word Could Allow Remote Code Execution (2269638) Source: CCN Type: Microsoft Security Bulletin MS10-057Vulnerability in Microsoft Office Excel Could Allow Remote Code Execution (2269707) Source: CCN Type: Microsoft Security Bulletin MS10-079Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (2293194) Source: CCN Type: Microsoft Security Bulletin MS10-087Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2423930) Source: CCN Type: Microsoft Security Bulletin MS10-105Vulnerabilities in Microsoft Office Graphics Filters Could Allow for Remote Code Execution (968095) Source: CCN Type: Microsoft Security Bulletin MS11-021Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2489279) Source: CCN Type: Microsoft Security Bulletin MS11-023Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2489293) Source: CCN Type: Microsoft Security Bulletin MS11-045Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2537146) Source: CCN Type: Microsoft Security Bulletin MS11-072Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2587505) Source: BID Type: UNKNOWN32621 Source: CCN Type: BID-32621Microsoft Excel Formula Handling Remote Code Execution Vulnerability Source: SECTRACK Type: UNKNOWN1021368 Source: CERT Type: US Government ResourceTA08-344A Source: VUPEN Type: UNKNOWNADV-2008-3386 Source: MS Type: UNKNOWNMS08-074 Source: XF Type: UNKNOWNexcel-spreadsheet-code-execution(46862) Source: OVAL Type: UNKNOWNoval:org.mitre.oval:def:5556 Vulnerable Configuration: Configuration 1 :cpe:/a:microsoft:office_excel:2000:sp3:*:*:*:*:*:* OR cpe:/a:microsoft:office_excel:2002:sp3:*:*:*:*:*:* OR cpe:/a:microsoft:office_excel:2003:sp3:*:*:*:*:*:* OR cpe:/a:microsoft:office_excel:2007:*:*:*:*:*:*:* OR cpe:/a:microsoft:office_excel:2007:sp1:*:*:*:*:*:* AND cpe:/a:microsoft:office:2007:*:*:*:*:*:*:* OR cpe:/a:microsoft:office:2007:sp1:*:*:*:*:*:* OR cpe:/a:microsoft:office:2000:sp3:*:*:*:*:*:* OR cpe:/a:microsoft:office:2003:sp3:*:*:*:*:*:* OR cpe:/a:microsoft:office:xp:sp3:*:*:*:*:*:* Configuration 2 :cpe:/a:microsoft:office:2004:*:mac:*:*:*:*:* OR cpe:/a:microsoft:office:2008:*:mac:*:*:*:*:* OR cpe:/a:microsoft:office_compatibility_pack_for_word_excel_ppt_2007:*:*:*:*:*:*:*:* OR cpe:/a:microsoft:office_compatibility_pack_for_word_excel_ppt_2007:*:sp1:*:*:*:*:*:* OR cpe:/a:microsoft:office_excel_viewer:*:*:*:*:*:*:*:* OR cpe:/a:microsoft:office_excel_viewer:2003:*:*:*:*:*:*:* OR cpe:/a:microsoft:office_excel_viewer:2003:sp3:*:*:*:*:*:* OR cpe:/a:microsoft:open_xml_file_format_converter:*:*:mac:*:*:*:*:* Configuration CCN 1 :cpe:/a:microsoft:excel_viewer:2003:*:*:*:*:*:*:* OR cpe:/a:microsoft:excel:2007:*:*:*:*:*:*:* OR cpe:/a:microsoft:office_compatibility_pack:2007:*:*:*:*:*:*:* OR cpe:/a:microsoft:excel:2000:sp3:*:*:*:*:*:* OR cpe:/a:microsoft:excel:2002:sp3:*:*:*:*:*:* OR cpe:/a:microsoft:excel_viewer:2003:sp3:*:*:*:*:*:* OR cpe:/a:microsoft:excel_viewer:*:*:*:*:*:*:*:* OR cpe:/a:microsoft:office_compatibility_pack:2007:sp1:*:*:*:*:*:* OR cpe:/a:microsoft:excel:2007:sp1:*:*:*:*:*:* OR cpe:/a:microsoft:excel:2003:sp3:*:*:*:*:*:* OR cpe:/a:microsoft:office:2004::~~~mac_os~~:*:*:*:*:* Denotes that component is vulnerable Oval Definitions BACK
microsoft office excel 2000 sp3
microsoft office excel 2002 sp3
microsoft office excel 2003 sp3
microsoft office excel 2007
microsoft office excel 2007 sp1
microsoft 20007 office system *
microsoft 20007 office system sp1
microsoft office 2000 sp3
microsoft office 2003 sp3
microsoft office xp sp3
microsoft office 2004
microsoft office 2008
microsoft office compatibility pack for word excel ppt 2007 *
microsoft office compatibility pack for word excel ppt 2007 * sp1
microsoft office excel viewer *
microsoft office excel viewer 2003
microsoft office excel viewer 2003 sp3
microsoft open xml file format converter *
microsoft excel viewer 2003
microsoft excel 2007
microsoft office compatibility pack 2007
microsoft excel 2000 sp3
microsoft excel 2002 sp3
microsoft excel viewer 2003 sp3
microsoft excel viewer *
microsoft office compatibility pack 2007 sp1
microsoft excel 2007 sp1
microsoft excel 2003 sp3
microsoft office 2004