CVE-2010-3231

Name of the Vulnerable Software and Affected Versions Microsoft Excel versions prior to the fixed version Office 2004 and 2008 for Mac versions prior to the fixed version Open XML File Format Converter for Mac versions prior to the fixed version

Description A remote code execution issue exists due to improper validation of record information in Microsoft Excel, allowing attackers to execute arbitrary code via a crafted Excel document. This could enable an attacker to take complete control of an affected system, install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft Excel, update to a version that includes the fix for this issue. For Office 2004 and 2008 for Mac, update to a version that includes the fix for this issue. For Open XML File Format Converter for Mac, update to a version that includes the fix for this issue. As a temporary workaround, consider avoiding the use of crafted Excel files until a patch is available.