BUGTRAQ ID: 31706 CVE(CAN) ID: CVE-2008-4019 Excel是微软Office办公套件中的电子表格工具。 Excel的REPT函数在处理单元格中的公式时存在整数溢出漏洞。如果用户受骗打开了特意的.xsl文档的话,就可以触发这个溢出,导致执行任意指令。 Microsoft Excel Viewer 2003 SP3 Microsoft Excel Viewer 2003 Microsoft Excel Viewer Microsoft Excel 2007 SP1 Microsoft Excel 2007 Microsoft Excel 2003 SP3 Microsoft Excel 2003 SP2 Microsoft Excel 2002 SP3 Microsoft Excel 2000 SP3 Microsoft Office 2008 for Mac Microsoft Office 2004 for Mac Microsoft Office SharePoint Server 2007 SP1 Microsoft Office SharePoint Server 2007 Microsoft --------- Microsoft已经为此发布了一个安全公告(MS08-057)以及相应补丁: MS08-057:Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (956416) 链接:<a href=http://www.microsoft.com/technet/security/Bulletin/MS08-057.mspx?pf=true target=_blank>http://www.microsoft.com/technet/security/Bulletin/MS08-057.mspx?pf=true</a>
BUGTRAQ ID: 31706 CVE(CAN) ID: CVE-2008-4019 Excel是微软Office办公套件中的电子表格工具。 Excel的REPT函数在处理单元格中的公式时存在整数溢出漏洞。如果用户受骗打开了特意的.xsl文档的话,就可以触发这个溢出,导致执行任意指令。 Microsoft Excel Viewer 2003 SP3 Microsoft Excel Viewer 2003 Microsoft Excel Viewer Microsoft Excel 2007 SP1 Microsoft Excel 2007 Microsoft Excel 2003 SP3 Microsoft Excel 2003 SP2 Microsoft Excel 2002 SP3 Microsoft Excel 2000 SP3 Microsoft Office 2008 for Mac Microsoft Office 2004 for Mac Microsoft Office SharePoint Server 2007 SP1 Microsoft Office SharePoint Server 2007 Microsoft --------- Microsoft已经为此发布了一个安全公告(MS08-057)以及相应补丁: MS08-057:Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (956416) 链接:<a href=http://www.microsoft.com/technet/security/Bulletin/MS08-057.mspx?pf=true target=_blank>http://www.microsoft.com/technet/security/Bulletin/MS08-057.mspx?pf=true</a>