CVE-2005-4131

high

Description

Unspecified vulnerability in Microsoft Excel 2000, 2002, and 2003, in Microsoft Office 2000 SP3 and other packages, allows user-assisted attackers to execute arbitrary code via an Excel file with a malformed range, which could lead to memory corruption involving an argument to the msvcrt.memmove function, aka "Brand new Microsoft Excel Vulnerability," as originally placed for sale on eBay as item number 7203336538.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/23537

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-012

http://www.vupen.com/english/advisories/2006/0950

http://www.us-cert.gov/cas/techalerts/TA06-073A.html

http://www.theregister.co.uk/2005/12/10/ebay_pulls_excel_vulnerability_auction/

http://www.theage.com.au/news/breaking/excel-flaw-up-for-sale-on-ebay/2005/12/09/1134086783318.html

http://www.securityfocus.com/news/11363

http://www.securityfocus.com/bid/15780

http://www.securityfocus.com/archive/1/427698/100/0/threaded

http://www.securityfocus.com/archive/1/427635/100/0/threaded

http://www.osvdb.org/blog/?p=71

http://www.kb.cert.org/vuls/id/642428

http://www.eweek.com/article2/0%2C1759%2C1899697%2C00.asp?kc=EWRSS03129TX1K0000614

http://www.dicks-blog.com/archives/2005/12/08/excel-vulnerability-for-sale/

http://support.avaya.com/elmodocs2/security/ASA-2006-069.htm

http://securitytracker.com/id?1015766

http://securitytracker.com/id?1015333

http://securityreason.com/securityalert/591

http://securityreason.com/securityalert/584

http://secunia.com/advisories/19238

http://secunia.com/advisories/19138

http://news.zdnet.com/2100-1009_22-5989078.html

http://news.com.com/2061-10789_3-5988086.html

http://informationweek.com/story/showArticle.jhtml?articleID=174910198

http://cgi.ebay.com/ws/eBayISAPI.dll?ViewItem&item=7203336538

Details

Source: Mitre, NVD

Published: 2005-12-09

Updated: 2023-11-07

Risk Information

CVSS v2

Base Score: 6.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High