cbcvebase.
CVE-2011-0105
published 2011-04-13

CVE-2011-0105: Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac obtain a certain length value from an uninitialized memory…

critical9.3CVSS 3.1
AVNACMAuNCCICAC
EXPLOIT
Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac obtain a certain length value from an uninitialized memory location, which allows remote attackers to trigger a buffer overflow and execute arbitrary code via a crafted Excel file, aka "Excel Data Initialization Vulnerability."

Affected

3 ranges
VendorProductVersion rangeFixed in
microsoftexcel
microsoftoffice
microsoftoffice

CVSS provenance

nvd9.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vulncheck9.3CRITICAL