Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2011-0979
HistoryFeb 10, 2011 - 7:00 p.m.

CVE-2011-0979

2011-02-1019:00:01
CWE-20
mitre
web.nvd.nist.gov
36
microsoft excel
office for mac
vulnerability
remote code execution
object record
cve-2011-0979

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.88

Percentile

98.7%

JSON

Microsoft Excel 2002 SP3, 2003 SP3, 2007 SP2, and 2010; Office 2004, 2008, and 2011 for Mac; Open XML File Format Converter for Mac; and Excel Viewer SP2 do not properly handle errors during the parsing of Office Art records in Excel spreadsheets, which allows remote attackers to execute arbitrary code via a malformed object record, related to a β€œstray reference,” aka β€œExcel Linked List Corruption Vulnerability.”

Affected configurations

Nvd
Node
microsoftexcelMatch--x64
OR
microsoftexcelMatch2002sp3
OR
microsoftexcelMatch2003sp3
OR
microsoftexcelMatch2007sp2
OR
microsoftexcelMatch2010
OR
microsoftexcel_viewerMatch-sp2
OR
microsoftofficeMatch2004mac
OR
microsoftofficeMatch2008mac
OR
microsoftofficeMatch2011mac
OR
microsoftoffice_compatibility_packMatch2007sp2
OR
microsoftopen_xml_file_format_convertermac
VendorProductVersionCPE
microsoftexcel-cpe:2.3:a:microsoft:excel:-:-:x64:*:*:*:*:*
microsoftexcel2002cpe:2.3:a:microsoft:excel:2002:sp3:*:*:*:*:*:*
microsoftexcel2003cpe:2.3:a:microsoft:excel:2003:sp3:*:*:*:*:*:*
microsoftexcel2007cpe:2.3:a:microsoft:excel:2007:sp2:*:*:*:*:*:*
microsoftexcel2010cpe:2.3:a:microsoft:excel:2010:*:*:*:*:*:*:*
microsoftexcel_viewer-cpe:2.3:a:microsoft:excel_viewer:-:sp2:*:*:*:*:*:*
microsoftoffice2004cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*
microsoftoffice2008cpe:2.3:a:microsoft:office:2008:*:mac:*:*:*:*:*
microsoftoffice2011cpe:2.3:a:microsoft:office:2011:*:mac:*:*:*:*:*
microsoftoffice_compatibility_pack2007cpe:2.3:a:microsoft:office_compatibility_pack:2007:sp2:*:*:*:*:*:*
Rows per page:
1-10 of 111

Related

prion 1
nvd 1
cvelist 1
seebug 1
checkpoint_advisories 1
zdi 1
openvas 4
nessus 2
securityvulns 1
prion
prion
Memory corruption
2011-02-10 19:00:00
nvd
nvd
CVE-2011-0979
2011-02-10 19:00:01
cvelist
cvelist
CVE-2011-0979
2011-02-10 18:00:00
seebug
seebug
Microsoft Excel Office ArtθΏœη¨‹δ»£η ζ‰§θ‘ŒζΌζ΄ž(MS11-021)
2011-04-15 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Office Excel SupBook Record Linked List Corruption (MS11-021; CVE-2011-0979)
2011-04-03 00:00:00
zdi
zdi
(0Day) Microsoft Office Excel Office Art Object Parsing Remote Code Execution Vulnerability
2011-02-07 00:00:00
openvas
openvas
Microsoft Office Excel Axis and Art Object Parsing Remote Code Execution Vulnerabilities
2011-02-23 00:00:00
Microsoft Office Excel Axis and Art Object Parsing RCE Vulnerabilities
2011-02-23 00:00:00
Microsoft Office Excel Remote Code Execution Vulnerabilities (2489279)
2011-04-13 00:00:00
nessus
nessus
MS11-021: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2489279)
2011-04-13 00:00:00
MS11-021 / MS11-022 / MS11-023: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2489279 / 2489283 / 2489293) (Mac OS X)
2011-04-13 00:00:00
securityvulns
securityvulns
Microsoft Office multiple security vulnerabilities
2011-04-17 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.88

Percentile

98.7%

JSON
Related for CVE-2011-0979
prion1nvd1cvelist1seebug1checkpoint_advisories1zdi1openvas4nessus2securityvulns1