4 matches found
MS10-079 / MS10-080 : Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2293194 / 2293211) (Mac OS X)
The remote Mac OS X host is running a version of Microsoft Office that is affected by multiple remote code execution vulnerabilities. If an attacker can trick a user on the affected host into opening a specially crafted Word, Excel, or Lotus 1-2-3 file, these issues could be leveraged to execute...
VUPEN Security Research - Microsoft Office Excel Merge Cell Record Invalid Pointer Vulnerability (CVE-2010-3237)
VUPEN Security Research - Microsoft Office Excel Merge Cell Record Invalid Pointer Vulnerability CVE-2010-3237 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- Microsoft Office Excel is a powerful tool you can use to create and format spreadsheets, and analyze and sha...
CVE-2010-3237
CVE-2010-3237 is a vulnerability in Microsoft Excel (affecting Excel 2002 SP3 and Office for Mac 2004) where parsing of the Merge Cell record can be exploited to execute arbitrary code. The root cause is improper handling/validation of Merge Cell Records in Excel file formats, enabling remote cod...
Microsoft Excel Merge Cell Record Pointer (CVE-2010-3237) Remote Code Execution Vulnerability
Description Microsoft Excel is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to open a specially crafted Excel file. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running the...