VUPEN Security Research - Microsoft Office Excel ExternName Buffer Overflow Vulnerability (CVE-2010-1249)

VUPEN Security Research - Microsoft Office Excel ExternName Buffer Overflow Vulnerability CVE-2010-1249 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Microsoft Office Excel is a powerful tool you can use to create and format spreadsheets, and analyze and share...

CVE-2010-1249

Buffer overflow in Microsoft Office Excel 2002 SP3, Office 2004 for Mac, Office 2008 for Mac, and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via an Excel file with a malformed ExternName 0x23 record, aka "Excel Memory Corruption Vulnerability," a...

CVE-2010-1249

CVE-2010-1249 is a memory corruption vulnerability in Microsoft Office Excel related to processing malformed ExternalName (record type 0x23) in Excel files, enabling remote code execution when a user opens a crafted file. Affected products per the CVE entry and linked advisories include Excel 200...

Microsoft Excel 'ExternName' Record Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to open a specially crafted Excel '.xls' file. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running...