exploitDog

CVE-2011-0978

Опубликовано: 10 фев. 2011

Источник: nvd

CVSS2: 9.3

EPSS Высокий

Описание

Stack-based buffer overflow in Microsoft Excel 2002 SP3, 2003 SP3, and 2007 SP2; Office 2004 for Mac; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2 allows remote attackers to execute arbitrary code via vectors related to an axis properties record, and improper incrementing of an array index, aka "Excel Array Indexing Vulnerability."

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:microsoft:excel:2002:sp3:*:*:*:*:*:*

cpe:2.3:a:microsoft:excel:2003:sp3:*:*:*:*:*:*

cpe:2.3:a:microsoft:excel:2007:sp2:*:*:*:*:*:*

cpe:2.3:a:microsoft:excel_viewer:-:sp2:*:*:*:*:*:*

cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*

cpe:2.3:a:microsoft:office_compatibility_pack:2007:sp2:*:*:*:*:*:*

EPSS

Процентиль: 99%

0.75919

Высокий

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-693v-vh3p-cg3g

github

больше 3 лет назад

Stack-based buffer overflow in Microsoft Excel 2002 SP3, 2003 SP3, and 2007 SP2; Office 2004 for Mac; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2 allows remote attackers to execute arbitrary code via vectors related to an axis properties record, and improper incrementing of an array index, aka "Excel Array Indexing Vulnerability."

EPSS

Процентиль: 99%

0.75919

Высокий

9.3 Critical

CVSS2

Дефекты

CWE-119