CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-1275

Microsoft Excel 2002 SP3; Office 2004, 2008, and 2011 for Mac; and Open XML File Format Converter for Mac do not properly validate record information during parsing of Excel spreadsheets, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted spreadsheet, aka "Excel Memory Heap Overwrite Vulnerability."

Exploit prediction scoring system (EPSS) score

EPSS Score 0.501

EPSS Ranking 97.6%

CVSS Severity

CVSS v2 Score 9.3

References

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-045
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12736
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-045
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12736

Products affected by CVE-2011-1275

Microsoft » Excel » Version: 2002

cpe:2.3:a:microsoft:excel:2002
Microsoft » Office » Version: 2004

cpe:2.3:a:microsoft:office:2004
Microsoft » Office » Version: 2008

cpe:2.3:a:microsoft:office:2008
Microsoft » Office » Version: 2011

cpe:2.3:a:microsoft:office:2011
Microsoft » Open Xml File Format Converter » Version: N/A

cpe:2.3:a:microsoft:open_xml_file_format_converter:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-1275

Products

Pricing

Contact Us