9.3

CVE-2012-1887

Use-after-free vulnerability in Microsoft Excel 2003 SP3, 2007 SP2 and SP3, and 2010 SP1, and Office 2008 and 2011 for Mac, allows remote attackers to execute arbitrary code via a crafted spreadsheet, aka "Excel SST Invalid Length Use After Free Vulnerability."

Data is provided by the National Vulnerability Database (NVD)
MicrosoftExcel Version2003 Updatesp3
MicrosoftExcel Version2007 Updatesp2
MicrosoftExcel Version2007 Updatesp3
MicrosoftExcel Version2010 Updatesp1 Editionx64
MicrosoftExcel Version2010 Updatesp1 Editionx86
MicrosoftOffice Version2008 Editionmac
MicrosoftOffice Version2011 Editionmac
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 58.33% 0.981
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C