Integer Underflow Vulnerability in Microsoft Excel by Microsoft
CVE-2011-0097

Currently unrated

Key Information:

Vendor
Microsoft
Vendor
CVE Published:
13 April 2011

Summary

An integer underflow vulnerability in Microsoft Excel allows an attacker to create a malicious Excel file that can trigger stack-based buffer overflows. This can lead to arbitrary code execution on the victim's system when the file is opened. Affected versions include Microsoft Excel 2002 SP3, 2003 SP3, 2007 SP2, and 2010, along with several Office applications on Mac. Users are advised to apply security updates provided by Microsoft to mitigate this threat.

References

EPSS Score

63% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.