Lucene search

PRIOn knowledge basePRION:CVE-2011-0105

HistoryApr 13, 2011 - 6:55 p.m.

Buffer overflow

2011-04-1318:55:00

PRIOn knowledge base

www.prio-n.com

8.4 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.971 High

EPSS

Percentile

99.7%

JSON

Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac obtain a certain length value from an uninitialized memory location, which allows remote attackers to trigger a buffer overflow and execute arbitrary code via a crafted Excel file, aka “Excel Data Initialization Vulnerability.”

CPENameOperatorVersion
exceleq2002 sp3
officeeq2008 mac
officeeq2004 mac

Name	Operator	Version
excel	eq	2002 sp3
office	eq	2008 mac
office	eq	2004 mac

References

secunia.com/advisories/39122

www.securitytracker.com/id?1025337

www.us-cert.gov/cas/techalerts/TA11-102A.html

www.vupen.com/english/advisories/2011/0940

docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-021

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12618

8.4 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.971 High

EPSS

Percentile

99.7%

JSON

Related for PRION:CVE-2011-0105