Lucene search
HistoryDec 11, 2014 - 12:59 a.m.
CVE-2014-6361
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.9 High
AI Score
Confidence
Low
0.124 Low
EPSS
Percentile
95.4%
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 Gold and SP1, Excel 2013 RT Gold and SP1, and Office Compatibility Pack allow remote attackers to execute arbitrary code via a crafted Office document, aka “Excel Invalid Pointer Remote Code Execution Vulnerability.”
Affected configurations
Node
microsoftexcelMatch2007sp3
ORmicrosoftexcelMatch2010sp2x64
ORmicrosoftexcelMatch2010sp2x86
ORmicrosoftexcelMatch2013rt_gold
ORmicrosoftexcelMatch2013sp1
ORmicrosoftoffice_compatibility_pack
Related
cve
cve
CVE-2014-6361
2014-12-11 00:59:12
symantec
symantec
Microsoft Excel CVE-2014-6361 Memory Corruption Vulnerability
2014-12-09 00:00:00
checkpoint_advisories
checkpoint_advisories
prion
prion
Remote code execution
2014-12-11 00:59:00
cvelist
cvelist
CVE-2014-6361
2014-12-11 00:00:00
openvas
openvas
nessus
nessus
securityvulns
securityvulns
Microsoft Office multiple security vulnerabilities
2015-01-14 00:00:00
kaspersky
kaspersky
KLA10616 Multiple vulnerabilities in Microsoft Office
2014-12-09 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.9 High
AI Score
Confidence
Low
0.124 Low
EPSS
Percentile
95.4%
Related for NVD:CVE-2014-6361