How severe is CVE-2008-3471?

This vulnerability has a severity rating of HIGH with a CVSS score of 9.3 out of 10.

What type of vulnerability is CVE-2008-3471?

This is classified as CWE-787, which is a common weakness in software security.

CVE-2008-3471

HIGH Year: 2008

CVSS v2 Score

9.3

Critical

Weakness Type

CWE-787

View all →

Vulnerability Description

Stack-based buffer overflow in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2 and SP3, and 2007 Gold and SP1; Office Excel Viewer 2003 SP3; Office Excel Viewer; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Gold and SP1; Office 2004 and 2008 for Mac; and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via a BIFF file with a malformed record that triggers a user-influenced size calculation, aka "File Format Parsing Vulnerability."

CVE-2016-9343

CRITICAL

CVSS:10.0(Critical)

An issue was discovered in Rockwell Automation Logix5000 Programmable Automation Controller FRN 16.00 through 21.00 (excluding all firmware versions prior to FRN 16.00, which are not affected). By sen...

CWE-7872016

CVE-2017-2853

CRITICAL

CVSS:10.0(Critical)

An exploitable Code Execution vulnerability exists in the RequestForPatientInfoEEGfile functionality of Natus Xltek NeuroWorks 8. A specially crafted network packet can cause a stack buffer overflow r...

CWE-7872017

CVE-2017-2868

CRITICAL

CVSS:10.0(Critical)

An exploitable code execution vulnerability exists in the NewProducerStream functionality of Natus Xltek NeuroWorks 8. A specially crafted network packet can cause a stack buffer overflow resulting in...

CWE-7872017

CVE-2017-2869

CRITICAL

CVSS:10.0(Critical)

An exploitable code execution vulnerability exists in the OpenProducer functionality of Natus Xltek NeuroWorks 8. A specially crafted network packet can cause a stack buffer overflow resulting in code...

CWE-7872017

CVE-2018-10718

CRITICAL

CVSS:10.0(Critical)

Stack-based buffer overflow in Activision Infinity Ward Call of Duty Modern Warfare 2 before 2018-04-26 allows remote attackers to execute arbitrary code via crafted packets.

CWE-7872018

CVE-2018-17160

CRITICAL

CVSS:10.0(Critical)

In FreeBSD before 11.2-STABLE(r341486) and 11.2-RELEASE-p6, insufficient bounds checking in one of the device models provided by bhyve can permit a guest operating system to overwrite memory in the bh...

CWE-7872018

CVE-2008-3471

Vulnerability Description

Related Vulnerabilities

CVE-2016-9343

CVE-2017-2853

CVE-2017-2868

CVE-2017-2869

CVE-2018-10718

CVE-2018-17160