Lucene search

PRIOn knowledge basePRION:CVE-2010-3236

HistoryOct 13, 2010 - 7:00 p.m.

Design/Logic Flaw

2010-10-1319:00:00

PRIOn knowledge base

www.prio-n.com

8 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.931 High

EPSS

Percentile

99.0%

JSON

Microsoft Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate record information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka “Out Of Bounds Array Vulnerability.”

CPENameOperatorVersion
exceleq2002 sp3
exceleq2003 sp3
officeeq2008 mac
officeeq2004 mac

Name	Operator	Version
excel	eq	2002 sp3
excel	eq	2003 sp3
office	eq	2008 mac
office	eq	2004 mac

References

www.us-cert.gov/cas/techalerts/TA10-285A.html

docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-080

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7209

8 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.931 High

EPSS

Percentile

99.0%

JSON

Related for PRION:CVE-2010-3236