CVE-2010-3230Microsoft Excel vulnerability

CWE-1894 documents4 sources
Severity
9.3CRITICALNVD
EPSS
68.6%
top 1.37%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Excel
Timeline
PublishedOct 13
Latest updateMay 14

Description

Integer overflow in Microsoft Excel 2002 SP3 allows remote attackers to execute arbitrary code via an Excel document with crafted record information, aka "Excel Record Parsing Integer Overflow Vulnerability."

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

NVDmicrosoft/excel2002

🔴Vulnerability Details

2
GHSA
GHSA-p973-rq82-cpv6: Integer overflow in Microsoft Excel 2002 SP3 allows remote attackers to execute arbitrary code via an Excel document with crafted record information,2022-05-14
CVEList
CVE-2010-3230: Integer overflow in Microsoft Excel 2002 SP3 allows remote attackers to execute arbitrary code via an Excel document with crafted record information,2010-10-13

🕵️Threat Intelligence

1
Zscaler
Zscaler found Multiple Security Vulnerabilities | 11-12-2010
CVE-2010-3230 — Microsoft Excel vulnerability | cvebase