Описание
Microsoft Excel 2007 SP3; the proofing tools in Office 2010 SP2; Excel 2010 SP2; Excel 2013 Gold, SP1, and RT; Excel Viewer; and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Office document, aka "Excel Remote Code Execution Vulnerability."
Ссылки
- Vendor Advisory
- VDB EntryVendor Advisory
- Third Party AdvisoryVDB Entry
- PatchVendor Advisory
- VDB Entry
- Vendor Advisory
- VDB EntryVendor Advisory
- Third Party AdvisoryVDB Entry
- PatchVendor Advisory
- VDB Entry
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:microsoft:office_compatibility_pack:*:sp3:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:a:microsoft:excel_viewer:*:*:*:*:*:*:*:*
Конфигурация 3
Одно из
cpe:2.3:a:microsoft:excel:2007:sp3:*:*:*:*:*:*
cpe:2.3:a:microsoft:excel:2010:sp2:*:*:*:*:x64:*
cpe:2.3:a:microsoft:excel:2010:sp2:*:*:*:*:x86:*
cpe:2.3:a:microsoft:excel:2013:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:excel:2013:sp3:*:*:*:*:*:*
Конфигурация 4
Одно из
cpe:2.3:a:microsoft:office:2010:sp2:x64:*:*:*:*:*
cpe:2.3:a:microsoft:office:2010:sp2:x86:*:*:*:*:*
EPSS
Процентиль: 97%
0.3411
Средний
9.3 Critical
CVSS2
Дефекты
CWE-399
Связанные уязвимости
github
больше 3 лет назад
Microsoft Excel 2007 SP3; the proofing tools in Office 2010 SP2; Excel 2010 SP2; Excel 2013 Gold, SP1, and RT; Excel Viewer; and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Office document, aka "Excel Remote Code Execution Vulnerability."
EPSS
Процентиль: 97%
0.3411
Средний
9.3 Critical
CVSS2
Дефекты
CWE-399