PT-2010-2055 · Microsoft · Office Excel

Nicolas Joly

Publicado

2010-03-10

Atualizado

2018-10-12

CVE-2010-0257

CVSS v2.0

9.3

Alta

Vetor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Microsoft Office Excel 2002 SP3

Description A remote code execution issue exists in the way Microsoft Office Excel handles specially crafted Excel files. This allows an attacker to potentially take complete control of an affected system, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft Office Excel 2002 SP3, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Code Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-94

Identificadores relacionados

CVE-2010-0257

Produtos afetados

Office Excel

PT-2010-2055 · Microsoft · Office Excel

CVE-2010-0257

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8