microsoft excel CVE-2008-3471 vulnerability in Microsoft Products
Published on October 15, 2008

product logo product logo
Stack-based buffer overflow in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2 and SP3, and 2007 Gold and SP1; Office Excel Viewer 2003 SP3; Office Excel Viewer; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office 2004 and 2008 for Mac; and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via a BIFF file with a malformed record that triggers a user-influenced size calculation, aka "File Format Parsing Vulnerability."

Vendor Advisory Vendor Advisory Vendor Advisory NVD


Products Associated with CVE-2008-3471

Want to know whenever a new CVE is published for Microsoft products? stack.watch will email you.

Microsoft Excel
 
Microsoft Excel Viewer
 
Microsoft Office
 
Microsoft Office Compatibility Pack
 
Microsoft Open Xml File Format Converter
 

Exploit Probability

EPSS
73.24%
Percentile
98.77%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.