Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMicrosoftCVE-2010-3336
HistoryNov 10, 2010 - 3:00 a.m.

CVE-2010-3336

2010-11-1003:00:02
CWE-119
microsoft
web.nvd.nist.gov
38
cve-2010-3336
microsoft office
office for mac
open xml file format converter
remote code execution
memory corruption
vulnerability

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

Low

EPSS

0.935

Percentile

99.2%

JSON

Microsoft Office XP SP3, Office 2004 and 2008 for Mac, Office for Mac 2011, and Open XML File Format Converter for Mac allow remote attackers to execute arbitrary code via a crafted Office document that triggers memory corruption, aka “MSO Large SPID Read AV Vulnerability.”

Affected configurations

Nvd
Node
microsoftofficeMatch2004mac
OR
microsoftofficeMatch2008mac
OR
microsoftofficeMatch2011mac
OR
microsoftofficeMatchxpsp3
OR
microsoftopen_xml_file_format_convertermac
VendorProductVersionCPE
microsoftoffice2004cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*
microsoftoffice2008cpe:2.3:a:microsoft:office:2008:*:mac:*:*:*:*:*
microsoftoffice2011cpe:2.3:a:microsoft:office:2011:*:mac:*:*:*:*:*
microsoftofficexpcpe:2.3:a:microsoft:office:xp:sp3:*:*:*:*:*:*
microsoftopen_xml_file_format_converter*cpe:2.3:a:microsoft:open_xml_file_format_converter:*:*:mac:*:*:*:*:*

Related

prion 1
cvelist 1
nvd 1
checkpoint_advisories 1
nessus 2
openvas 2
securityvulns 2
mskb 1
prion
prion
Memory corruption
2010-11-10 03:00:00
cvelist
cvelist
CVE-2010-3336
2010-11-10 01:00:00
nvd
nvd
CVE-2010-3336
2010-11-10 03:00:02
checkpoint_advisories
checkpoint_advisories
Microsoft Office Excel MSO Large SPID Read AV Code Execution (MS10-087; CVE-2010-3336)
2010-11-09 00:00:00
nessus
nessus
MS10-087: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2423930) (Mac OS X)
2010-11-09 00:00:00
MS10-087: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2423930)
2010-11-09 00:00:00
openvas
openvas
Microsoft Office Remote Code Execution Vulnerabilities (2423930)
2010-11-10 00:00:00
Microsoft Office Remote Code Execution Vulnerabilities (2423930)
2010-11-10 00:00:00
securityvulns
securityvulns
Microsoft Security Bulletin MS10-087 - Critical Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2423930)
2010-11-10 00:00:00
Microsoft Office multiple security vulnerabilities
2010-11-15 00:00:00
mskb
mskb
MS10-087: Vulnerabilities in Microsoft Office could allow remote code execution
2014-06-21 14:34:09

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

Low

EPSS

0.935

Percentile

99.2%

JSON
Related for CVE-2010-3336
prion1cvelist1nvd1checkpoint_advisories1nessus2openvas2securityvulns2mskb1