Memory Corruption Vulnerability in Microsoft Excel and Open XML File Format Converter
CVE-2011-1277

Currently unrated

Key Information:

Vendor: Microsoft
Status: Open Xml File Format Converter; Office; Excel
Vendor: CVE Published:; 16 June 2011

Summary

Microsoft Excel 2002 SP3, Office 2008 for Mac, and Open XML File Format Converter for Mac are susceptible to a memory corruption vulnerability due to inadequate validation of record information during the parsing of Excel spreadsheets. This flaw enables remote attackers to execute arbitrary code or potentially trigger a denial of service by utilizing a specially crafted spreadsheet file. It is vital for users to apply security updates to safeguard against potential exploitations stemming from this vulnerability.

References

http://www.securityfocus.com/bid/48162

vdb-entryx_refsource_BID

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

50% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jun 16, 2011
Vulnerability Reserved
Mar 4, 2011