OR
          *cpe:2.3:a:microsoft:frontpage:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:project:2002:sp1:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:access:2000:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:outlook:2000:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:powerpoint:2000:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:project:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*
          *cpe:2.3:a:microsoft:excel:2000:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:publisher:2000:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:word:2000:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:access:2002:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:powerpoint:2002:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:office:xp:sp3:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:outlook:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:powerpoint:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:office:2003:sp2:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:infopath:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:publisher:2002:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:frontpage:2002:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:excel_viewer:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:word:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:excel:2002:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:visio:2002:sp2:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:excel:2004:*:mac:*:*:*:*:*
          *cpe:2.3:a:microsoft:access:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:project:2000:sr1:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:publisher:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:onenote:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:word:2002:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:word_viewer:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:frontpage:2000:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:visio:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:excel:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:outlook:2002:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:powerpoint:2004:*:mac:*:*:

OR
          *cpe:2.3:a:microsoft:frontpage:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:project:2002:sp1:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:access:2000:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:outlook:2000:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:powerpoint:2000:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:project:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:excel:2000:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:publisher:2000:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:word:2000:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:access:2002:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:powerpoint:2002:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:office:xp:sp3:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:outlook:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:powerpoint:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:office:2003:sp2:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:infopath:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:publisher:2002:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:frontpage:2002:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:excel_viewer:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:word:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:excel:2002:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:visio:2002:sp2:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:access:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:project:2000:sr1:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:publisher:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:onenote:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:word:2002:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:word_viewer:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:frontpage:2000:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:visio:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:excel:2003:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:outlook:2002:*:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:office:2000:sp3:*:*:*:*:*:*
          *cpe:2.3:a:microsoft:office:2004:*:*:*:*:macos:*:*

CVE: http://secunia.com/advisories/24008 Types: Vendor Advisory

CVE: http://secunia.com/advisories/24008 Types: Broken Link, Vendor Advisory

CVE: http://www.microsoft.com/technet/security/advisory/932553.mspx Types: Vendor Advisory

CVE: http://www.microsoft.com/technet/security/advisory/932553.mspx Types: Broken Link, Vendor Advisory

CVE: http://www.us-cert.gov/cas/techalerts/TA07-044A.html Types: US Government Resource

CVE: http://www.us-cert.gov/cas/techalerts/TA07-044A.html Types: Broken Link, US Government Resource

Microsoft Corporation: http://secunia.com/advisories/24008 Types: Vendor Advisory

Microsoft Corporation: http://secunia.com/advisories/24008 Types: Broken Link, Vendor Advisory

Microsoft Corporation: http://www.microsoft.com/technet/security/advisory/932553.mspx Types: Vendor Advisory

Microsoft Corporation: http://www.microsoft.com/technet/security/advisory/932553.mspx Types: Broken Link, Vendor Advisory

Microsoft Corporation: http://www.us-cert.gov/cas/techalerts/TA07-044A.html Types: US Government Resource

Microsoft Corporation: http://www.us-cert.gov/cas/techalerts/TA07-044A.html Types: Broken Link, US Government Resource

CISA-ADP: https://learn.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-015 Types: Vendor Advisory

CISA-ADP: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2007-0671 Types: US Government Resource

CVE: http://osvdb.org/31901 Types: Broken Link

CVE: http://securitytracker.com/id?1017584 Types: Broken Link

CVE: http://vil.nai.com/vil/content/v_141393.htm Types: Broken Link

CVE: http://www.avertlabs.com/research/blog/?p=191 Types: Broken Link

CVE: http://www.securityfocus.com/bid/22383 Types: Broken Link

CVE: https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-015 Types: Vendor Advisory

CVE: https://exchange.xforce.ibmcloud.com/vulnerabilities/32178 Types: Third Party Advisory

CVE: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A301 Types: Broken Link

Microsoft Corporation: http://osvdb.org/31901 Types: Broken Link

Microsoft Corporation: http://securitytracker.com/id?1017584 Types: Broken Link

Microsoft Corporation: http://vil.nai.com/vil/content/v_141393.htm Types: Broken Link

Microsoft Corporation: http://www.avertlabs.com/research/blog/?p=191 Types: Broken Link

Microsoft Corporation: http://www.securityfocus.com/bid/22383 Types: Broken Link

Microsoft Corporation: https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-015 Types: Vendor Advisory

Microsoft Corporation: https://exchange.xforce.ibmcloud.com/vulnerabilities/32178 Types: Third Party Advisory

Microsoft Corporation: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A301 Types: Broken Link

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2007-0671

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2007-0671

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2007-0671

2025-08-12

2025-09-02

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Microsoft Office Excel Remote Code Execution Vulnerability

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

https://learn.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-015

http://osvdb.org/31901

http://secunia.com/advisories/24008

http://securitytracker.com/id?1017584

http://vil.nai.com/vil/content/v_141393.htm

http://www.avertlabs.com/research/blog/?p=191

http://www.kb.cert.org/vuls/id/613740

http://www.microsoft.com/technet/security/advisory/932553.mspx

http://www.securityfocus.com/bid/22383

http://www.us-cert.gov/cas/techalerts/TA07-044A.html

http://www.vupen.com/english/advisories/2007/0463

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-015

https://exchange.xforce.ibmcloud.com/vulnerabilities/32178

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A301

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-015 [No Types Assigned]

http://www.microsoft.com/technet/security/Bulletin/MS07-015.mspx [Vendor Advisory]

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A301 [No Types Assigned]

http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:301 [Tool Signature, US Government Resource]

https://exchange.xforce.ibmcloud.com/vulnerabilities/32178 [No Types Assigned]

http://xforce.iss.net/xforce/xfdb/32178 [No Types Assigned]