Vulnerability Name: | CVE-2011-0978 (CCN-65190) | ||||||||
Assigned: | 2011-02-07 | ||||||||
Published: | 2011-02-07 | ||||||||
Updated: | 2018-10-12 | ||||||||
Summary: | Stack-based buffer overflow in Microsoft Excel 2002 SP3, 2003 SP3, and 2007 SP2; Office 2004 for Mac; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2 allows remote attackers to execute arbitrary code via vectors related to an axis properties record, and improper incrementing of an array index, aka "Excel Array Indexing Vulnerability." | ||||||||
CVSS v3 Severity: | 10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
| ||||||||
CVSS v2 Severity: | 9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C) 6.9 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:POC/RL:OF/RC:UR)
6.9 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:POC/RL:OF/RC:UR)
| ||||||||
Vulnerability Type: | CWE-119 | ||||||||
Vulnerability Consequences: | Gain Access | ||||||||
References: | Source: MITRE Type: CNA CVE-2011-0978 Source: MISC Type: UNKNOWN http://dvlabs.tippingpoint.com/blog/2011/02/07/zdi-disclosure-microsoft Source: CCN Type: Microsoft Web site Microsoft Excel Source: CCN Type: SA39122 Microsoft Excel Multiple Vulnerabilities Source: SECUNIA Type: UNKNOWN 39122 Source: CCN Type: SA43232 Microsoft Office Excel Axis Properties Record Parsing Buffer Overflow Source: SECUNIA Type: UNKNOWN 43232 Source: SREASON Type: UNKNOWN 8231 Source: CCN Type: Microsoft Security Bulletin MS11-096 Vulnerability in Microsoft Excel Could Allow Remote Code Execution (2640241) Source: CCN Type: Microsoft Security Bulletin MS13-085 Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2885080) Source: CCN Type: Microsoft Security Bulletin MS14-083 Vulnerabilities in MicrosoftExcel Could Allow Remote Code Execution (3017347) Source: CCN Type: Microsoft Security Bulletin MS16-054 Security Update for Microsoft Office (3155544) Source: CCN Type: Microsoft Security Bulletin MS16-070 Security Update for Office (3163610) Source: CCN Type: Microsoft Security Bulletin MS16-088 Security Updates for Office (3170008) Source: CCN Type: Microsoft Security Bulletin MS16-099 Security Update for Office (3177451) Source: CCN Type: Microsoft Security Bulletin MS16-107 Security Update for Microsoft Office (3185852) Source: CCN Type: Microsoft Security Bulletin MS16-121 Security Update for Microsoft Office (3194063) Source: CCN Type: Microsoft Security Bulletin MS16-133 Security Update for Microsoft Office (3199168) Source: CCN Type: Microsoft Security Bulletin MS16-148 Security Update for Microsoft Office (3204068) Source: CCN Type: Microsoft Security Bulletin MS17-002 Security Update for Microsoft Office (3214291) Source: CCN Type: Microsoft Security Bulletin MS17-013 Security Update for Microsoft Graphics Component (4013075) Source: CCN Type: Microsoft Security Bulletin MS17-014 Security Update for Microsoft Office (4013241) Source: CCN Type: Microsoft Security Bulletin MS11-021 Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2489279) Source: CCN Type: Microsoft Security Bulletin MS11-045 Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2537146) Source: CCN Type: Microsoft Security Bulletin MS11-072 Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2587505) Source: CCN Type: BID-46225 Microsoft Excel Axis Properties Remote Code Execution Vulnerability Source: SECTRACK Type: UNKNOWN 1025337 Source: CERT Type: US Government Resource TA11-102A Source: VUPEN Type: UNKNOWN ADV-2011-0940 Source: MISC Type: UNKNOWN http://zerodayinitiative.com/advisories/ZDI-11-042/ Source: MS Type: UNKNOWN MS11-021 Source: XF Type: UNKNOWN ms-excel-axis-code-execution(65190) Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:12439 Source: EXPLOIT-DB Type: EXPLOIT Offensive Security Exploit Database [04-29-2011] Source: CCN Type: ZDI-11-042 Microsoft Office Excel Axis Properties Record Parsing Remote Code Execution Vulnerability | ||||||||
Vulnerable Configuration: | Configuration 1: Configuration CCN 1: Denotes that component is vulnerable | ||||||||
Oval Definitions | |||||||||
| |||||||||
BACK |