PT-2010-2055 · Microsoft · Office Excel

Nicolas Joly

Published

2010-03-10

Updated

2018-10-12

CVE-2010-0257

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Microsoft Office Excel 2002 SP3

Description A remote code execution issue exists in the way Microsoft Office Excel handles specially crafted Excel files. This allows an attacker to potentially take complete control of an affected system, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft Office Excel 2002 SP3, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2010-0257

Affected Products

Office Excel

PT-2010-2055 · Microsoft · Office Excel

CVE-2010-0257

Weakness Enumeration

Related Identifiers

Affected Products

References · 8