header-logo
Suggest Exploit
vendor:
Excel
by:
ZhenHan.Liu
9
CVSS
CRITICAL
Remote Buffer Overflow
CWE
Product Name: Excel
Affected Version From: Excel 2003 Sp2
Affected Version To: Excel 2003 Sp2
Patch Exists: NO
Related CWE:
CPE: a:microsoft:excel:2003:sp2
Metasploit:
Other Scripts:
Platforms Tested: Windows
2007

Excel 2003 Sp2 Remote Buffer Overflow Vulnerability

This exploit takes advantage of a remote buffer overflow vulnerability in Excel 2003 Sp2. An attacker can send a specially crafted Excel file to a victim, and when the victim opens the file, it triggers the buffer overflow, allowing the attacker to execute arbitrary code on the victim's machine. This vulnerability was discovered by ZhenHan.Liu of Ph4nt0m Security Team.

Mitigation:

Apply the latest security patches and updates from Microsoft to mitigate this vulnerability. Do not open Excel files from untrusted sources.
Source

Exploit-DB raw data:

Vuln Exposed by: ZhenHan.Liu 
Team: Ph4nt0m Security Team
http://www.ph4nt0m.org
 
Tested on: Full Patched Excel 2003 Sp2, CN

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/4121.zip (06272007-2670.zip)

# milw0rm.com [2007-06-27]

Navigation

Suggest Exploit

Services By CQR