CVE-1999-1055

High

7.5/10

Summary

Microsoft Excel 97 does not warn the user before executing worksheet functions, which could allow attackers to execute arbitrary commands by using the CALL function to execute a malicious DLL, aka the Excel "CALL Vulnerability."

Access Complexity: LOW
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: PARTIAL
Availability Impact: PARTIAL

References

Advisory Timeline

Published Dec 31, 1999

CVE-1999-1055

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS