Published: 09/12/2005 Updated: 07/11/2023

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

VMScore: 685

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Unspecified vulnerability in Microsoft Excel 2000, 2002, and 2003, in Microsoft Office 2000 SP3 and other packages, allows user-assisted malicious users to execute arbitrary code via an Excel file with a malformed range, which could lead to memory corruption involving an argument to the msvcrt.memmove function, aka "Brand new Microsoft Excel Vulnerability," as originally placed for sale on eBay as item number 7203336538.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft excel 2002
microsoft excel 2003
microsoft excel 2000
microsoft excel 95
microsoft excel 97

source: wwwsecurityfocuscom/bid/15780/info Microsoft Excel is susceptible to a remote code-execution vulnerability This issue was originally disclosed through an eBay auction that has since been terminated This issue is due to the application's failure to properly bounds-check user-supplied input data in the 'Named Range' definition in ...

NVD-CWE-noinfo http://www.theage.com.au/news/breaking/excel-flaw-up-for-sale-on-ebay/2005/12/09/1134086783318.html http://news.com.com/2061-10789_3-5988086.html http://cgi.ebay.com/ws/eBayISAPI.dll?ViewItem&item=7203336538 http://www.dicks-blog.com/archives/2005/12/08/excel-vulnerability-for-sale/http://www.osvdb.org/blog/?p=71 http://www.securityfocus.com/bid/15780 http://news.zdnet.com/2100-1009_22-5989078.html http://informationweek.com/story/showArticle.jhtml?articleID=174910198 http://securitytracker.com/id?1015333 http://www.securityfocus.com/news/11363 http://www.theregister.co.uk/2005/12/10/ebay_pulls_excel_vulnerability_auction/http://www.us-cert.gov/cas/techalerts/TA06-073A.html http://www.kb.cert.org/vuls/id/642428 http://securitytracker.com/id?1015766 http://secunia.com/advisories/19138 http://support.avaya.com/elmodocs2/security/ASA-2006-069.htm http://secunia.com/advisories/19238 http://securityreason.com/securityalert/584 http://securityreason.com/securityalert/591 http://www.vupen.com/english/advisories/2006/0950 https://exchange.xforce.ibmcloud.com/vulnerabilities/23537 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-012 http://www.securityfocus.com/archive/1/427698/100/0/threaded http://www.securityfocus.com/archive/1/427635/100/0/threaded http://www.eweek.com/article2/0%2C1759%2C1899697%2C00.asp?kc=EWRSS03129TX1K0000614 https://nvd.nist.gov https://www.exploit-db.com/exploits/26769/https://www.kb.cert.org/vuls/id/642428

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2005-4131

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect