CVE-2010-0260

Name of the Vulnerable Software and Affected Versions Microsoft Office Excel 2007 versions SP1 through SP2 Microsoft Office Excel Viewer versions SP1 through SP2 Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats versions SP1 through SP2

Description A heap-based buffer overflow issue allows remote attackers to execute arbitrary code via a crafted spreadsheet, potentially giving an attacker complete control of an affected system. This could enable the attacker to install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft Office Excel 2007 versions SP1 and SP2, update to a version that is not affected by this issue. For Microsoft Office Excel Viewer versions SP1 and SP2, update to a version that is not affected by this issue. For Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats versions SP1 and SP2, update to a version that is not affected by this issue.