Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1275

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2011-1275
Last Modified 18 Jul 2011 10:44:29
Published 16 Jun 2011 04:55:02
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-1275

Summary

Microsoft Excel 2002 SP3; Office 2004, 2008, and 2011 for Mac; and Open XML File Format Converter for Mac do not properly validate record information during parsing of Excel spreadsheets, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted spreadsheet, aka "Excel Memory Heap Overwrite Vulnerability."

Vulnerable Systems

Application

  • Microsoft Excel 2002

  • Microsoft Office 2004

  • Microsoft Office 2008

  • Microsoft Office 2011

  • Microsoft Open Xml File Format Converter


References

MS - MS11-045

Related Patches

MS11-045 Security Update for Microsoft Excel 2010, 32-Bit Edition (KB2523021)

MS11-045 Security Update for Microsoft Excel 2010, 64-Bit Edition (KB2523021)

MS11-045 MS11-036 2537146 2545814 2555785 Microsoft Office 2008 for Mac Update 12.3.0

MS11-045 MS11-036 2537146 2545814 2555787 Open XML File Format Converter for Mac 1.2.0

MS11-045 2537146 2555784 Microsoft Office 2011 for Mac Update 14.1.2


Last Updated: 27 May 2016 10:56:15