9.3

CVE-2011-0980

Microsoft Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly parse Office Art objects, which allows remote attackers to execute arbitrary code via vectors related to a function pointer, aka "Excel Dangling Pointer Vulnerability."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftExcel Version2002 Updatesp3
MicrosoftExcel Version2003
MicrosoftExcel Version2003 Updatesp3
MicrosoftOffice Version2004 Editionmac
MicrosoftOffice Version2008 Editionmac
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 26.37% 0.977
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.us-cert.gov/cas/techalerts/TA11-102A.html
US Government Resource
http://dvlabs.tippingpoint.com/blog/2011/02/07/zdi-disclosure-microsoft
http://secunia.com/advisories/39122
http://www.securitytracker.com/id?1025337
http://www.vupen.com/english/advisories/2011/0940
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-021
http://secunia.com/advisories/43210
http://zerodayinitiative.com/advisories/ZDI-11-040/
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12018