PT-2010-2954 · Microsoft · Office Excel

Nicolas Joly

Published

2010-06-08

Updated

2018-10-12

CVE-2010-1249

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Microsoft Office Excel (affected versions not specified)

Description A remote code execution issue exists in the way Microsoft Office Excel handles specially crafted Excel files. This could allow an attacker to take complete control of an affected system, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2010-1249

Affected Products

Office Excel

PT-2010-2954 · Microsoft · Office Excel

CVE-2010-1249

Weakness Enumeration

Related Identifiers

Affected Products

References · 10