exploitDog

CVE-2011-1275

Опубликовано: 16 июн. 2011

Источник: nvd

CVSS2: 9.3

EPSS Средний

Описание

Microsoft Excel 2002 SP3; Office 2004, 2008, and 2011 for Mac; and Open XML File Format Converter for Mac do not properly validate record information during parsing of Excel spreadsheets, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted spreadsheet, aka "Excel Memory Heap Overwrite Vulnerability."

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:microsoft:excel:2002:sp3:*:*:*:*:*:*

cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*

cpe:2.3:a:microsoft:office:2008:*:mac:*:*:*:*:*

cpe:2.3:a:microsoft:office:2011:*:mac:*:*:*:*:*

cpe:2.3:a:microsoft:open_xml_file_format_converter:*:*:mac:*:*:*:*:*

EPSS

Процентиль: 98%

0.50125

Средний

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-xq4v-f5xw-jqg4

github

больше 3 лет назад

Microsoft Excel 2002 SP3; Office 2004, 2008, and 2011 for Mac; and Open XML File Format Converter for Mac do not properly validate record information during parsing of Excel spreadsheets, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted spreadsheet, aka "Excel Memory Heap Overwrite Vulnerability."

EPSS

Процентиль: 98%

0.50125

Средний

9.3 Critical

CVSS2

Дефекты

CWE-119