Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2012-1887
HistoryNov 14, 2012 - 12:55 a.m.

CVE-2012-1887

2012-11-1400:55:01
CWE-399
[email protected]
web.nvd.nist.gov
40
cve-2012-1887
microsoft excel
use-after-free vulnerability
remote code execution
crafted spreadsheet

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.932 High

EPSS

Percentile

99.1%

JSON

Use-after-free vulnerability in Microsoft Excel 2003 SP3, 2007 SP2 and SP3, and 2010 SP1, and Office 2008 and 2011 for Mac, allows remote attackers to execute arbitrary code via a crafted spreadsheet, aka “Excel SST Invalid Length Use After Free Vulnerability.”

Affected configurations

NVD
Node
microsoftexcelMatch2003sp3
OR
microsoftexcelMatch2007sp2
OR
microsoftexcelMatch2007sp3
OR
microsoftexcelMatch2010sp1x64
OR
microsoftexcelMatch2010sp1x86
OR
microsoftofficeMatch2008mac
OR
microsoftofficeMatch2011mac

Related

checkpoint_advisories 2
cvelist 1
prion 1
nvd 1
openvas 4
nessus 2
securityvulns 1
mskb 1
checkpoint_advisories
checkpoint_advisories
Microsoft Excel SST Invalid Length Use After Free - Ver2 (CVE-2012-1887)
2014-04-16 00:00:00
Microsoft Excel SST Invalid Length Use After Free (MS12-076; CVE-2012-1887)
2012-11-13 00:00:00
cvelist
cvelist
CVE-2012-1887
2012-11-14 00:00:00
prion
prion
Design/Logic Flaw
2012-11-14 00:55:00
nvd
nvd
CVE-2012-1887
2012-11-14 00:55:01
openvas
openvas
Microsoft Office Remote Code Execution Vulnerabilities (2720184) - Mac OS X
2012-11-14 00:00:00
Microsoft Office Remote Code Execution Vulnerabilities (2720184)
2012-11-14 00:00:00
Microsoft Office Remote Code Execution Vulnerabilities - 2720184 (Mac OS X)
2012-11-14 00:00:00
nessus
nessus
MS12-076: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2720184) (Mac OS X)
2012-11-14 00:00:00
MS12-076: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2720184)
2012-11-14 00:00:00
securityvulns
securityvulns
Microsoft Excel multiple security vulnerabilities
2012-11-18 00:00:00
mskb
mskb
MS12-076: Vulnerabilities in Microsoft Excel could allow remote code execution: November 13, 2012
2012-11-13 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.932 High

EPSS

Percentile

99.1%

JSON
Related for CVE-2012-1887
checkpoint_advisories2cvelist1prion1nvd1openvas4nessus2securityvulns1mskb1