Microsoft Office Excel 2007 SP1 and SP2; Office 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer SP1 and SP2; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2; and Office SharePoint Server 2007 SP1 and SP2 do not validate ZIP headers during decompression of Open XML (.XLSX) documents, which allows remote attackers to execute arbitrary code via a crafted document that triggers access to uninitialized memory locations, aka "Microsoft Office Excel XLSX File Parsing Code Execution Vulnerability."
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: microsoft
Published: 2010-03-10T22:00:00
Updated: 2024-08-07T00:45:11.572Z
Reserved: 2010-01-07T00:00:00
Link: CVE-2010-0263
Vulnrichment
No data.
NVD
Status : Modified
Published: 2010-03-10T22:30:01.200
Modified: 2024-11-21T01:11:51.890
Link: CVE-2010-0263
Redhat
No data.