Microsoft Excel 95/97/2000/2002/2003/2004 - Memory Corruption (MS06-012)

EDB-ID:

26869

CVE:





Platform:

Windows

Date:

2005-12-19


source: https://www.securityfocus.com/bid/15926/info

Microsoft Excel is susceptible to two unspecified memory-corruption vulnerabilities. The issues present themselves when Microsoft Excel tries to process malformed or corrupted XLS files.

Attackers may exploit these issues to crash the affected application and possibly to execute arbitrary machine code.

This BID will be updated and potentially split into separate records as further information is disclosed.

UPDATE (Mar 14, 2006): Microsoft has released security advisory MS06-012 addressing this and other issues.

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/27055-2.xls

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/27055-1.xls