New Search

Excel MergeCells Record Heap Overflow Vulnerability

oval:org.mitre.oval:def:14738

Heap-based buffer overflow in Microsoft Excel 2007 SP2 and SP3 and 2010 Gold and SP1 Excel Viewer and Office Compatibility Pack SP2 and SP3 allows remote attackers to execute arbitrary code via a crafted spreadsheet that triggers incorrect handling of memory during opening aka "Excel MergeCells Record Heap Overflow Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2003
  • Microsoft Windows XP
  • Microsoft Windows 7
  • Microsoft Windows Server 2008 R2
  • Microsoft Windows Vista
  • Microsoft Windows Server 2008
Class:
vulnerability
Reference(s):
  • CVE-2012-0185
Product(s):
  • Microsoft Office 2010
  • Microsoft Excel 2010
  • Microsoft Office Excel Viewer
  • Microsoft Excel 2007
  • Microsoft Office Compatibility Pack
  • Microsoft Office 2007