CVE-2012-2543

Name of the Vulnerable Software and Affected Versions Microsoft Excel versions 2007 SP2 through 2007 SP3 Microsoft Excel version 2010 SP1 Office 2011 for Mac Excel Viewer Office Compatibility Pack versions SP2 through SP3

Description A remote code execution issue exists in the way Microsoft Excel handles specially crafted Excel files, allowing attackers to execute arbitrary code via a crafted spreadsheet. This could enable an attacker to take complete control of an affected system, potentially installing programs, viewing, changing, or deleting data, or creating new accounts with full user rights.

Recommendations For Microsoft Excel 2007 SP2 and SP3, consider applying security updates to address the issue. For Microsoft Excel 2010 SP1, apply the recommended security patch to mitigate the risk. For Office 2011 for Mac, Excel Viewer, and Office Compatibility Pack SP2 and SP3, update to a version that includes the fix for this issue, as no specific workaround is provided. As a temporary workaround, consider restricting the opening of specially crafted Excel files until a patch is available.