Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMicrosoftCVE-2010-0263
HistoryMar 10, 2010 - 10:30 p.m.

CVE-2010-0263

2010-03-1022:30:01
CWE-94
microsoft
web.nvd.nist.gov
46
cve-2010-0263
microsoft office
excel
open xml
xlsx
vulnerability
code execution
remote attack

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

High

EPSS

0.919

Percentile

99.0%

JSON

Microsoft Office Excel 2007 SP1 and SP2; Office 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer SP1 and SP2; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2; and Office SharePoint Server 2007 SP1 and SP2 do not validate ZIP headers during decompression of Open XML (.XLSX) documents, which allows remote attackers to execute arbitrary code via a crafted document that triggers access to uninitialized memory locations, aka β€œMicrosoft Office Excel XLSX File Parsing Code Execution Vulnerability.”

Affected configurations

Nvd
Node
microsoftexcelMatch2002sp3
OR
microsoftexcelMatch2003sp3
OR
microsoftexcelMatch2007sp1
OR
microsoftexcelMatch2007sp2
OR
microsoftofficeMatch2004mac
OR
microsoftofficeMatch2008mac
OR
microsoftoffice_compatibility_packMatch2007sp1
OR
microsoftoffice_compatibility_packMatch2007sp2
OR
microsoftoffice_excel_viewersp1
OR
microsoftoffice_excel_viewersp2
OR
microsoftoffice_sharepoint_serverMatch2007sp1x32
OR
microsoftoffice_sharepoint_serverMatch2007sp1x64
OR
microsoftoffice_sharepoint_serverMatch2007sp2x32
OR
microsoftoffice_sharepoint_serverMatch2007sp2x64
OR
microsoftopen_xml_file_format_convertermac
VendorProductVersionCPE
microsoftexcel2002cpe:2.3:a:microsoft:excel:2002:sp3:*:*:*:*:*:*
microsoftexcel2003cpe:2.3:a:microsoft:excel:2003:sp3:*:*:*:*:*:*
microsoftexcel2007cpe:2.3:a:microsoft:excel:2007:sp1:*:*:*:*:*:*
microsoftexcel2007cpe:2.3:a:microsoft:excel:2007:sp2:*:*:*:*:*:*
microsoftoffice2004cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*
microsoftoffice2008cpe:2.3:a:microsoft:office:2008:*:mac:*:*:*:*:*
microsoftoffice_compatibility_pack2007cpe:2.3:a:microsoft:office_compatibility_pack:2007:sp1:*:*:*:*:*:*
microsoftoffice_compatibility_pack2007cpe:2.3:a:microsoft:office_compatibility_pack:2007:sp2:*:*:*:*:*:*
microsoftoffice_excel_viewer*cpe:2.3:a:microsoft:office_excel_viewer:*:sp1:*:*:*:*:*:*
microsoftoffice_excel_viewer*cpe:2.3:a:microsoft:office_excel_viewer:*:sp2:*:*:*:*:*:*
Rows per page:
1-10 of 151

Related

zdi 1
cvelist 1
seebug 1
prion 1
checkpoint_advisories 2
nvd 1
securityvulns 3
nessus 2
openvas 2
zdi
zdi
Microsoft Office Excel XLSX File Parsing Remote Code Execution Vulnerability
2010-03-09 00:00:00
cvelist
cvelist
CVE-2010-0263
2010-03-10 22:00:00
seebug
seebug
Microsoft Excel XLSXζ–‡δ»Άθ§£ζžθΏœη¨‹δ»£η ζ‰§θ‘ŒζΌζ΄žοΌˆMS10-017οΌ‰
2010-03-10 00:00:00
prion
prion
Remote code execution
2010-03-10 22:30:00
checkpoint_advisories
checkpoint_advisories
Microsoft Excel XLSX File Parsing Code Execution (MS10-017; CVE-2010-0263)
2010-03-09 00:00:00
Microsoft Excel XLSX File Parsing Code Execution (MS10-017) - Ver2 (CVE-2010-0263)
2014-03-03 00:00:00
nvd
nvd
CVE-2010-0263
2010-03-10 22:30:01
securityvulns
securityvulns
ZDI-10-025: Microsoft Office Excel XLSX File Parsing Remote Code Execution Vulnerability
2010-03-10 00:00:00
Microsoft Excel multiple security vulnerabilities
2010-03-11 00:00:00
Microsoft Security Bulletin MS10-017 - Important Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (980150)
2010-03-10 00:00:00
nessus
nessus
MS10-017: Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (980150) (Mac OS X)
2010-10-20 00:00:00
MS10-017: Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (980150)
2010-03-09 00:00:00
openvas
openvas
Microsoft Office Excel Multiple Vulnerabilities (980150)
2010-03-10 00:00:00
Microsoft Office Excel Multiple Vulnerabilities (980150)
2010-03-10 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

High

EPSS

0.919

Percentile

99.0%

JSON
Related for CVE-2010-0263
zdi1cvelist1seebug1prion1checkpoint_advisories2nvd1securityvulns3nessus2openvas2