CVE-2010-3335

Name of the Vulnerable Software and Affected Versions Microsoft Office versions XP SP3 through 2010 Microsoft Office for Mac versions 2004 through 2011 Open XML File Format Converter for Mac (affected versions not specified)

Description A remote code execution issue exists in the way Microsoft Office software parses specially crafted Office files, potentially allowing an attacker to execute arbitrary code via a crafted Office document that triggers memory corruption. This could enable an attacker to take complete control of an affected system, install programs, view, change, or delete data, or create new accounts with full user rights. The impact may be less severe for users with limited user rights compared to those operating with administrative rights.

Recommendations For Microsoft Office versions XP SP3 through 2010, update to a version that is not affected by this issue. For Microsoft Office for Mac versions 2004 through 2011, update to a version that is not affected by this issue. For Open XML File Format Converter for Mac, at the moment, there is no information about a newer version that contains a fix for this vulnerability.