CVE-2011-0980

Currently unrated

Key Information:

Vendor: Microsoft
Status: Open Xml File Format Converter; Office; Excel
Vendor: CVE Published:; 10 February 2011

Summary

Microsoft Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly parse Office Art objects, which allows remote attackers to execute arbitrary code via vectors related to a function pointer, aka "Excel Dangling Pointer Vulnerability."

References

http://zerodayinitiative.com/advisories/ZDI-11-040/

x_refsource_MISC

http://www.us-cert.gov/cas/techalerts/TA11-102A.html

third-party-advisoryx_refsource_CERT

http://secunia.com/advisories/39122

third-party-advisoryx_refsource_SECUNIA

EPSS Score

87% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Feb 10, 2011
Vulnerability Reserved
Feb 10, 2011

Collectors

NVD DatabaseMitre Database