CVE-2007-3890

EPSS 58.98%
Published 14.08.2007 21:17:00
Last modified 09.04.2025 00:30:58
Source secure@microsoft.com
Teams watchlist Login
Open Login

Microsoft Excel in Office 2000 SP3, Office XP SP3, Office 2003 SP2, and Office 2004 for Mac allows remote attackers to execute arbitrary code via a Workspace with a certain index value that triggers memory corruption.

Affected products Warnungen 0 Metrics 2 CWE 0 References 10

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Excel Version2000 Updatesp3

Microsoft ≫ Excel Version2003 Updatesp2

Microsoft ≫ Excel Version2004 Editionmac

Microsoft ≫ Excel Versionxp_sp3

Microsoft ≫ Office Version2000 Updatesp3

Microsoft ≫ Office Version2003 Updatesp2

Microsoft ≫ Office Version2004 Editionmac

Microsoft ≫ Office Versionxp Updatesp3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	58.98%	0.98

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C

http://www.us-cert.gov/cas/techalerts/TA07-226A.html

US Government Resource

http://secunia.com/advisories/26145

http://www.securityfocus.com/bid/25280

http://www.securitytracker.com/id?1018561

http://www.vupen.com/english/advisories/2007/2868

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-044

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2149

https://nvd.nist.gov/vuln/detail/CVE-2007-3890

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-3890

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-3890

EUVD