Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2010-0263
HistoryMar 10, 2010 - 10:30 p.m.

CVE-2010-0263

2010-03-1022:30:01
CWE-94
[email protected]
web.nvd.nist.gov
6

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.919

Percentile

99.0%

JSON

Microsoft Office Excel 2007 SP1 and SP2; Office 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer SP1 and SP2; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2; and Office SharePoint Server 2007 SP1 and SP2 do not validate ZIP headers during decompression of Open XML (.XLSX) documents, which allows remote attackers to execute arbitrary code via a crafted document that triggers access to uninitialized memory locations, aka β€œMicrosoft Office Excel XLSX File Parsing Code Execution Vulnerability.”

Affected configurations

Nvd
Node
microsoftexcelMatch2002sp3
OR
microsoftexcelMatch2003sp3
OR
microsoftexcelMatch2007sp1
OR
microsoftexcelMatch2007sp2
OR
microsoftofficeMatch2004mac
OR
microsoftofficeMatch2008mac
OR
microsoftoffice_compatibility_packMatch2007sp1
OR
microsoftoffice_compatibility_packMatch2007sp2
OR
microsoftoffice_excel_viewersp1
OR
microsoftoffice_excel_viewersp2
OR
microsoftoffice_sharepoint_serverMatch2007sp1x32
OR
microsoftoffice_sharepoint_serverMatch2007sp1x64
OR
microsoftoffice_sharepoint_serverMatch2007sp2x32
OR
microsoftoffice_sharepoint_serverMatch2007sp2x64
OR
microsoftopen_xml_file_format_convertermac
VendorProductVersionCPE
microsoftexcel2002cpe:2.3:a:microsoft:excel:2002:sp3:*:*:*:*:*:*
microsoftexcel2003cpe:2.3:a:microsoft:excel:2003:sp3:*:*:*:*:*:*
microsoftexcel2007cpe:2.3:a:microsoft:excel:2007:sp1:*:*:*:*:*:*
microsoftexcel2007cpe:2.3:a:microsoft:excel:2007:sp2:*:*:*:*:*:*
microsoftoffice2004cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*
microsoftoffice2008cpe:2.3:a:microsoft:office:2008:*:mac:*:*:*:*:*
microsoftoffice_compatibility_pack2007cpe:2.3:a:microsoft:office_compatibility_pack:2007:sp1:*:*:*:*:*:*
microsoftoffice_compatibility_pack2007cpe:2.3:a:microsoft:office_compatibility_pack:2007:sp2:*:*:*:*:*:*
microsoftoffice_excel_viewer*cpe:2.3:a:microsoft:office_excel_viewer:*:sp1:*:*:*:*:*:*
microsoftoffice_excel_viewer*cpe:2.3:a:microsoft:office_excel_viewer:*:sp2:*:*:*:*:*:*
Rows per page:
1-10 of 151

Related

cve 1
zdi 1
cvelist 1
checkpoint_advisories 2
securityvulns 3
seebug 1
prion 1
nessus 2
openvas 2
cve
cve
CVE-2010-0263
2010-03-10 22:30:01
zdi
zdi
Microsoft Office Excel XLSX File Parsing Remote Code Execution Vulnerability
2010-03-09 00:00:00
cvelist
cvelist
CVE-2010-0263
2010-03-10 22:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Excel XLSX File Parsing Code Execution (MS10-017; CVE-2010-0263)
2010-03-09 00:00:00
Microsoft Excel XLSX File Parsing Code Execution (MS10-017) - Ver2 (CVE-2010-0263)
2014-03-03 00:00:00
securityvulns
securityvulns
ZDI-10-025: Microsoft Office Excel XLSX File Parsing Remote Code Execution Vulnerability
2010-03-10 00:00:00
Microsoft Excel multiple security vulnerabilities
2010-03-11 00:00:00
Microsoft Security Bulletin MS10-017 - Important Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (980150)
2010-03-10 00:00:00
seebug
seebug
Microsoft Excel XLSXζ–‡δ»Άθ§£ζžθΏœη¨‹δ»£η ζ‰§θ‘ŒζΌζ΄žοΌˆMS10-017οΌ‰
2010-03-10 00:00:00
prion
prion
Remote code execution
2010-03-10 22:30:00
nessus
nessus
MS10-017: Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (980150) (Mac OS X)
2010-10-20 00:00:00
MS10-017: Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (980150)
2010-03-09 00:00:00
openvas
openvas
Microsoft Office Excel Multiple Vulnerabilities (980150)
2010-03-10 00:00:00
Microsoft Office Excel Multiple Vulnerabilities (980150)
2010-03-10 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.919

Percentile

99.0%

JSON
Related for NVD:CVE-2010-0263
cve1zdi1cvelist1checkpoint_advisories2securityvulns3seebug1prion1nessus2openvas2