CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2010-3236

Microsoft Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate record information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Out Of Bounds Array Vulnerability."

Exploit prediction scoring system (EPSS) score

EPSS Score 0.563

EPSS Ranking 98.0%

CVSS Severity

CVSS v2 Score 9.3

References

http://www.us-cert.gov/cas/techalerts/TA10-285A.html
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-080
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7209
http://www.us-cert.gov/cas/techalerts/TA10-285A.html
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-080
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7209

Products affected by CVE-2010-3236

Microsoft » Excel » Version: 2002

cpe:2.3:a:microsoft:excel:2002
Microsoft » Excel » Version: 2003

cpe:2.3:a:microsoft:excel:2003
Microsoft » Office » Version: 2004

cpe:2.3:a:microsoft:office:2004
Microsoft » Office » Version: 2008

cpe:2.3:a:microsoft:office:2008
Microsoft » Open Xml File Format Converter » Version: N/A

cpe:2.3:a:microsoft:open_xml_file_format_converter:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-3236

Products

Pricing

Contact Us