9.3
CVE-2011-0980
- EPSS 26.37%
- Veröffentlicht 10.02.2011 19:00:01
- Zuletzt bearbeitet 16.06.2026 23:28:21
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Microsoft Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly parse Office Art objects, which allows remote attackers to execute arbitrary code via vectors related to a function pointer, aka "Excel Dangling Pointer Vulnerability."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 26.37% | 0.977 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
http://www.us-cert.gov/cas/techalerts/TA11-102A.html
http://dvlabs.tippingpoint.com/blog/2011/02/07/zdi-disclosure-microsoft
http://secunia.com/advisories/39122
http://www.securitytracker.com/id?1025337
http://www.vupen.com/english/advisories/2011/0940
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-021
http://secunia.com/advisories/43210
http://zerodayinitiative.com/advisories/ZDI-11-040/
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12018