Lucene search
MicrosoftCVE-2010-0264HistoryMar 10, 2010 - 10:30 p.m.
CVE-2010-0264
2010-03-1022:30:01
CWE-94
microsoft
web.nvd.nist.gov
39
cve-2010-0264
microsoft office
excel
remote code execution
vulnerability
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.7
Confidence
High
EPSS
0.641
Percentile
97.9%
Microsoft Office Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly parse the Excel file format, which allows remote attackers to execute arbitrary code via a crafted spreadsheet, aka βMicrosoft Office Excel DbOrParamQry Record Parsing Vulnerability.β
Affected configurations
Node
microsoftexcelMatch2002sp3
ORmicrosoftexcelMatch2003sp3
ORmicrosoftexcelMatch2007sp1
ORmicrosoftexcelMatch2007sp2
ORmicrosoftofficeMatch2004mac
ORmicrosoftofficeMatch2008mac
ORmicrosoftoffice_compatibility_packMatch2007sp1
ORmicrosoftoffice_compatibility_packMatch2007sp2
ORmicrosoftoffice_excel_viewersp1
ORmicrosoftoffice_excel_viewersp2
ORmicrosoftoffice_sharepoint_serverMatch2007sp1x32
ORmicrosoftoffice_sharepoint_serverMatch2007sp1x64
ORmicrosoftoffice_sharepoint_serverMatch2007sp2x32
ORmicrosoftoffice_sharepoint_serverMatch2007sp2x64
ORmicrosoftopen_xml_file_format_convertermac
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | excel | 2002 | cpe:2.3:a:microsoft:excel:2002:sp3:*:*:*:*:*:* |
| microsoft | excel | 2003 | cpe:2.3:a:microsoft:excel:2003:sp3:*:*:*:*:*:* |
| microsoft | excel | 2007 | cpe:2.3:a:microsoft:excel:2007:sp1:*:*:*:*:*:* |
| microsoft | excel | 2007 | cpe:2.3:a:microsoft:excel:2007:sp2:*:*:*:*:*:* |
| microsoft | office | 2004 | cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:* |
| microsoft | office | 2008 | cpe:2.3:a:microsoft:office:2008:*:mac:*:*:*:*:* |
| microsoft | office_compatibility_pack | 2007 | cpe:2.3:a:microsoft:office_compatibility_pack:2007:sp1:*:*:*:*:*:* |
| microsoft | office_compatibility_pack | 2007 | cpe:2.3:a:microsoft:office_compatibility_pack:2007:sp2:*:*:*:*:*:* |
| microsoft | office_excel_viewer | * | cpe:2.3:a:microsoft:office_excel_viewer:*:sp1:*:*:*:*:*:* |
| microsoft | office_excel_viewer | * | cpe:2.3:a:microsoft:office_excel_viewer:*:sp2:*:*:*:*:*:* |
Related
saint
saint
Microsoft Excel DbOrParamQry memory corruption
2010-03-11 00:00:00
Microsoft Excel DbOrParamQry memory corruption
2010-03-11 00:00:00
Microsoft Excel DbOrParamQry memory corruption
2010-03-11 00:00:00
checkpoint_advisories
checkpoint_advisories
securityvulns
securityvulns
Microsoft Excel multiple security vulnerabilities
2010-03-11 00:00:00
seebug
seebug
Microsoft Excel DbOrParamQry对豑解ζε
εη ΄εζΌζ΄οΌMS10-017οΌ
2010-03-10 00:00:00
prion
prion
Format string
2010-03-10 22:30:00
coresecurity
coresecurity
Microsoft Office Excel DbOrParamQry Record Parsing Vulnerability
2010-03-09 00:00:00
cvelist
cvelist
CVE-2010-0264
2010-03-10 22:00:00
nvd
nvd
CVE-2010-0264
2010-03-10 22:30:01
nessus
nessus
openvas
openvas
Microsoft Office Excel Multiple Vulnerabilities (980150)
2010-03-10 00:00:00
Microsoft Office Excel Multiple Vulnerabilities (980150)
2010-03-10 00:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.7
Confidence
High
EPSS
0.641
Percentile
97.9%
Related for CVE-2010-0264