Vulnerabilities > Microsoft > Office > 2000

DATE CVE VULNERABILITY TITLE RISK
2006-10-10 CVE-2006-2387 Remote Code Execution vulnerability in Microsoft Excel DATETIME
Unspecified vulnerability in Microsoft Excel 2000, 2002, 2003, 2004 for Mac, v.X for Mac, Excel Viewer 2003, and Microsoft Works Suite 2004 through 2006 allows user-assisted attackers to execute arbitrary code via a crafted DATETIME record in an XLS file, a different vulnerability than CVE-2006-3867 and CVE-2006-3875.
network
high complexity
microsoft
5.1
5.1
2006-10-10 CVE-2006-3876 Code Injection vulnerability in Microsoft Office
Unspecified vulnerability in PowerPoint in Microsoft Office 2000, Office 2002, Office 2003, Office 2004 for Mac, and Office v.X for Mac allows user-assisted attackers to execute arbitrary code via a crafted Data record in a PPT file, a different vulnerability than CVE-2006-3435 and CVE-2006-4694.
network
microsoft CWE-94
critical
 9.3
9.3
2006-10-10 CVE-2006-3435 Code Injection vulnerability in Microsoft Office
PowerPoint in Microsoft Office 2000, XP, 2003, 2004 for Mac, and v.X for Mac does not properly parse the slide notes field in a document, which allows remote user-assisted attackers to execute arbitrary code via crafted data in this field, which triggers an erroneous object pointer calculation that uses data from within the document.
network
microsoft CWE-94
critical
 9.3
9.3
2006-09-27 CVE-2006-4694 Code Injection vulnerability in Microsoft Office 2000/2003/Xp
Unspecified vulnerability in PowerPoint in Microsoft Office 2000, Office XP and Office 2003 allows user-assisted attackers to execute arbitrary code via a crafted record in a PPT file, as exploited by malware such as Exploit:Win32/Controlppt.W, Exploit:Win32/Controlppt.X, and Exploit-PPT.d/Trojan.PPDropper.F.
network
microsoft CWE-94
critical
 9.3
9.3
2006-09-12 CVE-2006-0001 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Microsoft Office and Publisher
Stack-based buffer overflow in Microsoft Publisher 2000 through 2003 allows user-assisted remote attackers to execute arbitrary code via a crafted PUB file, which causes an overflow when parsing fonts.
network
microsoft CWE-119
critical
 9.3
9.3
2006-09-05 CVE-2006-4534 Remote Code Execution vulnerability in Microsoft Office 2000/2001/2003
Unspecified vulnerability in Microsoft Word 2000, 2002, and Office 2003 allows remote user-assisted attackers to execute arbitrary code via unspecified vectors involving a crafted file resulting in a malformed stack, as exploited by malware with names including Trojan.Mdropper.Q, Mofei, and Femo.
network
microsoft
critical
 9.3
9.3
2006-07-11 CVE-2006-2389 Unspecified vulnerability in Microsoft Office 2000/2003/Xp
Unspecified vulnerability in Microsoft Office 2003 SP1 and SP2, Office XP SP3, Office 2000 SP3, and other products, allows user-assisted attackers to execute arbitrary code via an Office file with a malformed property that triggers memory corruption related to record lengths, aka "Microsoft Office Property Vulnerability," a different vulnerability than CVE-2006-1316.
network
microsoft
critical
 9.3
9.3
2006-07-11 CVE-2006-1316 Code Injection vulnerability in Microsoft Office 2000/2003/Xp
Unspecified vulnerability in Microsoft Office 2003 SP1 and SP2, Office XP SP3, Office 2000 SP3, and other products, allows user-assisted attackers to execute arbitrary code via an Office file with malformed string that triggers memory corruption related to record lengths, aka "Microsoft Office Parsing Vulnerability," a different vulnerability than CVE-2006-2389.
network
microsoft CWE-94
critical
 9.3
9.3
2006-07-11 CVE-2006-0033 Remote Code Execution vulnerability in Microsoft Office Malformed PNG File
Unspecified vulnerability in Microsoft Office 2003 SP1 and SP2, Office XP SP3, Office 2000 SP3, and other products, allows user-assisted attackers to execute arbitrary code via a crafted PNG image that triggers memory corruption when it is parsed.
network
microsoft
critical
 9.3
9.3
2006-07-11 CVE-2006-0007 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Microsoft Office 2000/2003/Xp
Buffer overflow in GIFIMP32.FLT, as used in Microsoft Office 2003 SP1 and SP2, Office XP SP3, Office 2000 SP3, and other products, allows user-assisted attackers to execute arbitrary code via a crafted GIF image that triggers memory corruption when it is parsed.
network
microsoft CWE-119
critical
 9.3
9.3