Lucene search
KdotZDI-21-023HistoryJan 14, 2021 - 12:00 a.m.
Microsoft Excel XLS File Parsing Memory Corruption Remote Code Execution Vulnerability
2021-01-1400:00:00
kdot
www.zerodayinitiative.com
27
0.013 Low
EPSS
Percentile
86.2%
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XLS files. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process.
Related
mscve
mscve
Microsoft Excel Remote Code Execution Vulnerability
2021-01-12 08:00:00
prion
prion
Remote code execution
2021-01-12 20:15:00
cvelist
cvelist
CVE-2021-1713 Microsoft Excel Remote Code Execution Vulnerability
2021-01-12 19:42:42
nvd
nvd
CVE-2021-1713
2021-01-12 20:15:34
cve
cve
CVE-2021-1713
2021-01-12 20:15:34
nessus
nessus
Security Updates for Microsoft Excel Products (January 2021)
2021-01-12 00:00:00
Security Updates for Microsoft Excel Products C2R (January 2021)
2022-06-10 00:00:00
mskb
mskb
Description of the security update for Excel 2016: January 12, 2021
2021-01-12 08:00:00
Description of the security update for Excel 2010: January 12, 2021
2021-01-12 08:00:00
Description of the security update for Excel 2013: January 12, 2021
2021-01-12 08:00:00
openvas
openvas
Microsoft Excel 2010 Remote Code Execution Vulnerabilities (KB4493186)
2021-01-13 00:00:00
Microsoft Excel 2013 Remote Code Execution Vulnerabilities (KB4493176)
2021-01-13 00:00:00
Microsoft Excel 2016 Remote Code Execution Vulnerabilities (KB4493165)
2021-01-13 00:00:00
kaspersky
kaspersky
KLA12042 Multiple vulnerabilities in Microsoft Office
2021-01-12 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - January 2021
2021-01-12 23:59:00