Vulnerability in Microsoft Excel
CVE-2012-1847
Microsoft Excel 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Office 2008 and 2011 for Mac; Excel Viewer; and Office Compatibility Pack SP2 and SP3 do not properly handle memory during the opening of files, which allows remote attacke…
EPSS: 0.639 (98.4th percentile) — read the EPSS interpretation.
Affected products
- Microsoft Excel — versions 2003, 2007, 2010
- Microsoft Excel_viewer
- Microsoft Office — versions 2008, 2011
- Microsoft Office_compatibility_pack
- N/a — versions n/a
Weakness classification (CWE)
References
- oval:org.mitre.oval:def:15575 (x_refsource_OVAL, signature, vdb-entry)
- 1027041 (vdb-entry, x_refsource_SECTRACK)
- 53379 (vdb-entry, x_refsource_BID)
- MS12-030 (x_refsource_MS, vendor-advisory)
- 49112 (x_refsource_SECUNIA, third-party-advisory)
- TA12-129A (US Government Resource, x_refsource_CERT, third-party-advisory)
- ms-excel-series-code-execution(75119) (vdb-entry, x_refsource_XF)