CVE-2010-0243Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft Office

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources
Severity
9.3CRITICALNVD
EPSS
43.4%
top 2.48%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Office
Timeline
PublishedFeb 10
Latest updateMay 2

Description

Buffer overflow in MSO.DLL in Microsoft Office XP SP3 and Office 2004 for Mac allows remote attackers to execute arbitrary code via a crafted Office document, aka "MSO.DLL Buffer Overflow."

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

NVDmicrosoft/office2004, xp+1

🔴Vulnerability Details

1
GHSA
GHSA-7hp8-hwrp-vfhp: Buffer overflow in MSO2022-05-02

🕵️Threat Intelligence

1
Tenable
Microsoft Patch Tuesday - March 2010 - "It Won't Happen To Me" Edition2010-03-10
CVE-2010-0243 — Microsoft Office vulnerability | cvebase