CVE-2021-1713 – Microsoft Excel Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-1713
Microsoft Excel Remote Code Execution Vulnerability Una Vulnerabilidad de Ejecución de Código Remota de Microsoft Excel. Este ID de CVE es diferente de CVE-2021-1714 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XLS files. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1713 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-1713 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2020-17129 – Microsoft Excel Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-17129
Microsoft Excel Remote Code Execution Vulnerability Vulnerabilidad de ejecución de código remota en Microsoft Excel. Este ID de CVE es diferente a CVE-2020-17122, CVE-2020-17123, CVE-2020-17125, CVE-2020-17127, CVE-2020-17128. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17129 •
CVE-2020-17128 – Microsoft Excel Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-17128
Microsoft Excel Remote Code Execution Vulnerability Vulnerabilidad de ejecución de código remota en Microsoft Excel. Este ID de CVE es diferente a CVE-2020-17122, CVE-2020-17123, CVE-2020-17125, CVE-2020-17127, CVE-2020-17129 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XLS files. Crafted data in an XLS file can trigger a dereference of a user-supplied value as a pointer. An attacker can leverage this vulnerability to execute code in the context of the current process. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17128 •
CVE-2020-17126 – Microsoft Excel Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-17126
Microsoft Excel Information Disclosure Vulnerability Vulnerabilidad de divulgación de información en Microsoft Excel • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17126 •
CVE-2020-17125 – Microsoft Excel Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-17125
Microsoft Excel Remote Code Execution Vulnerability Vulnerabilidad de ejecución de código remota en Microsoft Excel. Este ID de CVE es diferente a CVE-2020-17122, CVE-2020-17123, CVE-2020-17127, CVE-2020-17128, CVE-2020-17129 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XLS files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17125 •