Excel Buffer Overwrite Vulnerability in Microsoft Office Products
CVE-2011-0104

Currently unrated

Key Information:

Vendor: Microsoft
Status: Open Xml File Format Converter; Office; Excel
Vendor: CVE Published:; 13 April 2011

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 77%

What is CVE-2011-0104?

A buffer overwrite vulnerability exists in Microsoft Excel and related Office products that could allow remote attackers to execute arbitrary code or disrupt service. This vulnerability arises when a specially crafted HLink record is processed within an Excel file, potentially leading to memory corruption. Attackers can exploit this flaw to manipulate the affected software, leading to unauthorized actions on devices utilizing these versions of Office products.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2011-0104-reproduction
Created by Sunqiz

References

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://www.us-cert.gov/cas/techalerts/TA11-102A.html

third-party-advisoryx_refsource_CERT

http://secunia.com/advisories/39122

third-party-advisoryx_refsource_SECUNIA

EPSS Score

77% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Aug 15, 2022
👾
Exploit known to exist
Aug 15, 2022
Vulnerability published
Apr 13, 2011
Vulnerability Reserved
Dec 21, 2010