Executive Summary
Summary | |
---|---|
Title | Vulnerability in Microsoft Office Excel Could Allow Remote Code Execution (2269707) |
Informations | |||
---|---|---|---|
Name | MS10-057 | First vendor Publication | 2010-08-10 |
Vendor | Microsoft | Last vendor Modification | 2010-08-11 |
Severity (Vendor) | Important | Revision | 1.1 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 9.3 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Revision Note: V1.1 (August 11, 2010): Added a link to Microsoft Knowledge Base Article 2269707 under Known Issues in the Executive Summary.Summary: This security update resolves a privately reported vulnerability in Microsoft Office. The vulnerability could allow remote code execution if a user opens a specially crafted Excel file. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. |
Original Source
Url : http://www.microsoft.com/technet/security/bulletin/MS10-057.mspx |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:12088 | |||
Oval ID: | oval:org.mitre.oval:def:12088 | ||
Title: | Excel Memory Corruption Vulnerability (CVE-2010-2562) | ||
Description: | Microsoft Office Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly parse the Excel file format, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Excel file, aka "Excel Memory Corruption Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2562 | Version: | 5 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft Windows 7 | Product(s): | Microsoft Excel 2002 Microsoft Excel 2003 |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 2 | |
Application | 2 | |
Application | 1 |
SAINT Exploits
Description | Link |
---|---|
Microsoft Office Excel PivotTable Cache Data Record Handling Overflow | More info here |
OpenVAS Exploits
Date | Description |
---|---|
2010-08-11 | Name : Microsoft Office Excel Remote Code Execution Vulnerability (2269707) File : nvt/secpod_ms10-057.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
66991 | Microsoft Office Excel PivotTable Cache Data Record Handling Overflow Microsoft Office Excel contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to a logic error when parsing certain records following a SXDB (PivotTable Cache Data) record having the "cfdbTot" field value set to zero. This can be exploited to cause a stack-based buffer overflow via a specially crafted Excel file. |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | Microsoft Office Excel pivot item index boundary corruption attempt RuleID : 23559 - Revision : 7 - Type : FILE-OFFICE |
2014-01-10 | Microsoft Office Excel pivot item index boundary corruption attempt RuleID : 23558 - Revision : 5 - Type : FILE-OFFICE |
2014-01-10 | Microsoft Office Excel pivot item index boundary corruption attempt RuleID : 19180 - Revision : 20 - Type : FILE-OFFICE |
2014-01-10 | Microsoft Office Excel pivot item index boundary corruption attempt RuleID : 17134 - Revision : 21 - Type : FILE-OFFICE |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2010-10-20 | Name : An application installed on the remote Mac OS X host is affected by multiple ... File : macosx_ms_office_aug2010.nasl - Type : ACT_GATHER_INFO |
2010-08-11 | Name : Arbitrary code can be executed on the remote host through Microsoft Office Ex... File : smb_nt_ms10-057.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 11:46:39 |
|
2014-01-19 21:30:30 |
|