Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2008-3005
HistoryAug 12, 2008 - 11:41 p.m.

CVE-2008-3005

2008-08-1223:41:00
CWE-20
[email protected]
web.nvd.nist.gov
38
microsoft office
excel
remote code execution
vulnerability
cve-2008-3005

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.2 High

AI Score

Confidence

Low

0.626 Medium

EPSS

Percentile

97.8%

JSON

Array index vulnerability in Microsoft Office Excel 2000 SP3 and 2002 SP3, and Office 2004 and 2008 for Mac allows remote attackers to execute arbitrary code via an Excel file with a crafted array index for a FORMAT record, aka the โ€œExcel Index Array Vulnerability.โ€

Affected configurations

NVD
Node
microsoftofficeMatch2000sp3
OR
microsoftofficeMatchxpsp3
Node
microsoftofficeMatch2004mac
OR
microsoftofficeMatch2008mac

Related

checkpoint_advisories 2
saint 4
securityvulns 3
nvd 1
seebug 1
prion 1
cvelist 1
openvas 2
nessus 2
checkpoint_advisories
checkpoint_advisories
Microsoft Office FORMAT Record Code Execution - Ver2 (CVE-2008-3005)
2014-04-16 00:00:00
Microsoft Excel FORMAT Record Array Index Memory Corruption (MS08-043; CVE-2008-3005)
2008-08-12 00:00:00
saint
saint
Microsoft Excel FORMAT record array index memory corruption
2008-09-24 00:00:00
Microsoft Excel FORMAT record array index memory corruption
2008-09-24 00:00:00
Microsoft Excel FORMAT record array index memory corruption
2008-09-24 00:00:00
securityvulns
securityvulns
iDefense Security Advisory 08.12.08: Microsoft Excel FORMAT Record Invalid Array Index Vulnerability
2008-08-13 00:00:00
Microsoft Security Bulletin MS08-043 โ€“ Critical Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (954066)
2008-08-12 00:00:00
Microsoft Office / Word / Excel / Power Point multiple security vulnerabilities
2008-08-13 00:00:00
nvd
nvd
CVE-2008-3005
2008-08-12 23:41:00
seebug
seebug
Microsoft Excel FORMAT่ฎฐๅฝ•ๆ— ๆ•ˆๆ•ฐ็ป„็ดขๅผ•ๆผๆดž๏ผˆMS08-043๏ผ‰
2008-08-15 00:00:00
prion
prion
Format string
2008-08-12 23:41:00
cvelist
cvelist
CVE-2008-3005
2008-08-12 23:00:00
openvas
openvas
Microsoft Excel Could Allow Remote Code Execution Vulnerabilities (954066)
2008-08-19 00:00:00
Microsoft Excel Could Allow Remote Code Execution Vulnerabilities (954066)
2008-08-19 00:00:00
nessus
nessus
MS08-043: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (954066)
2008-08-13 00:00:00
MS08-043 / MS08-051: Vulnerabilities in Microsoft Could Allow Remote Code Execution (954066 / 949785) (Mac OS X)
2010-10-20 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.2 High

AI Score

Confidence

Low

0.626 Medium

EPSS

Percentile

97.8%

JSON
Related for CVE-2008-3005
checkpoint_advisories2saint4securityvulns3nvd1seebug1prion1cvelist1openvas2nessus2