Oval Definition:oval:org.mitre.oval:def:15927
Revision Date:2014-06-30Version:17
Title:Excel Memory Corruption Vulnerability - MS12-076
Description:Microsoft Excel 2003 SP3, 2007 SP2 and SP3, and 2010 SP1; Excel Viewer; and Office Compatibility Pack SP2 and SP3 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted spreadsheet, aka "Excel Memory Corruption Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2012-1886
Platform(s):Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Microsoft Excel 2003
Microsoft Excel 2007
Microsoft Excel 2010
Microsoft Excel Viewer 2007
Microsoft Office Compatibility Pack
Definition Synopsis
  • excel 2003/version
  • Microsoft Excel 2003 SP3 is installed
  • AND Check if the version of excel.exe is less than 11.0.8347.0
  • OR excel 2007/version
  • excel 2007 sp2/sp3
  • Microsoft Excel 2007 SP2 is installed
  • OR Microsoft Excel 2007 SP3 is installed
  • AND Check if the version of excel.exe is less than 12.0.6665.5003
  • OR excel 2010/version
  • Microsoft Excel 2010 SP1 is installed
  • AND Check if the version of excel.exe is less than 14.0.6126.5003
  • OR excel viewer/version
  • Microsoft Excel Viewer 2007 is installed
  • AND Check if the version of xlview.exe is less than 12.0.6665.5003
  • OR office compatibility pack/version
  • office compatibility pack sp2/sp3
  • Microsoft Office Compatibility Pack SP3 is installed
  • OR Microsoft Office Compatibility Pack SP2 is installed
  • AND Check if the version of excelcnv.exe is less than 12.0.6665.5003
    • BACK