Lucene search

PRIOn knowledge basePRION:CVE-2010-1249

HistoryJun 08, 2010 - 8:30 p.m.

Memory corruption

2010-06-0820:30:00

PRIOn knowledge base

www.prio-n.com

8.1 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.957 High

EPSS

Percentile

99.4%

JSON

Buffer overflow in Microsoft Office Excel 2002 SP3, Office 2004 for Mac, Office 2008 for Mac, and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via an Excel file with a malformed ExternName (0x23) record, aka “Excel Memory Corruption Vulnerability,” a different vulnerability than CVE-2010-0823 and CVE-2010-1247.

CPENameOperatorVersion
exceleq2002 sp3
officeeq2008 mac
officeeq2004 mac

Name	Operator	Version
excel	eq	2002 sp3
office	eq	2008 mac
office	eq	2004 mac

References

osvdb.org/65232

www.securityfocus.com/archive/1/511767/100/0/threaded

www.securityfocus.com/bid/40527

www.us-cert.gov/cas/techalerts/TA10-159B.html

docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-038

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6634

8.1 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.957 High

EPSS

Percentile

99.4%

JSON

Related for PRION:CVE-2010-1249