Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1276

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2011-1276
Last Modified 26 Oct 2011 11:24:02
Published 16 Jun 2011 04:55:02
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-1276

Summary

Buffer overflow in Microsoft Excel 2002 SP3, 2003 SP3, and 2007 SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Excel spreadsheet, related to improper validation of record information, aka "Excel Buffer Overrun Vulnerability."

Vulnerable Systems

Application

  • Microsoft Excel 2002

  • Microsoft Excel 2003

  • Microsoft Excel 2007

  • Microsoft Excel Viewer

  • Microsoft Office 2004

  • Microsoft Office 2008

  • Microsoft Office Compatibility Pack 2007

  • Microsoft Open Xml File Format Converter


References

MS - MS11-045

SREASON - 8330

OSVDB - 72924

Related Patches

MS11-045 Security Update for Microsoft Excel 2010, 32-Bit Edition (KB2523021)

MS11-045 Security Update for Microsoft Excel 2010, 64-Bit Edition (KB2523021)

MS11-045 MS11-036 2537146 2545814 2555785 Microsoft Office 2008 for Mac Update 12.3.0

MS11-045 MS11-036 2537146 2545814 2555787 Open XML File Format Converter for Mac 1.2.0

MS11-045 2537146 2555784 Microsoft Office 2011 for Mac Update 14.1.2


Last Updated: 27 May 2016 10:56:15