CVE-2007-0671
CVE-2007-0671
In short
Microsoft Excel versions 2000, XP, 2003, and 2004 for Mac contain an unspecified flaw that allows attackers to run malicious code on a user's computer when they open a specially crafted Excel file. This vulnerability was actively exploited in real-world attacks before a fix was available.
Technical detail
An unspecified vulnerability in Excel 2000, XP, 2003, and 2004 for Mac allows remote code execution through user-assisted attack vectors (opening a malicious document). The vulnerability was demonstrated in targeted zero-day exploits before disclosure, indicating active exploitation in the wild with no prior warning.
Summary generated and translated by AI from the official description.
Unspecified vulnerability in Microsoft Excel 2000, XP, 2003, and 2004 for Mac, and possibly other Office products, allows remote user-assisted attackers to execute arbitrary code via unknown attack vectors, as demonstrated by Exploit-MSExcel.h in targeted zero-day attacks.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://osvdb.org/31901https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-015http://secunia.com/advisories/24008http://securitytracker.com/id?1017584https://exchange.xforce.ibmcloud.com/vulnerabilities/32178https://learn.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-015https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A301https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2007-0671http://vil.nai.com/vil/content/v_141393.htmhttp://www.avertlabs.com/research/blog/?p=191http://www.kb.cert.org/vuls/id/613740http://www.microsoft.com/technet/security/advisory/932553.mspx