| Title | 複数の Microsoft 製品におけるヒープベースのバッファオーバーフローの脆弱性 |
|---|---|
| Summary | 複数の Microsoft 製品には、任意のコードを実行される脆弱性が存在します。 |
| Possible impacts | 巧妙に細工されたスプレッドシートを介して、任意のコードを実行される可能性があります。 |
| Solution | ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。 |
| Publication Date | March 9, 2010, midnight |
| Registration Date | March 19, 2010, 10:28 a.m. |
| Last Update | March 19, 2010, 10:28 a.m. |
| CVSS2.0 : 危険 | |
| Score | 9.3 |
|---|---|
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
| マイクロソフト |
| Microsoft Excel 2007 |
| Word/Excel/PowerPoint 2007 ファイル形式用 Microsoft Office 互換機能パック |
| No | Changed Details | Date of change |
|---|---|---|
| 0 | [2010年03月19日] 掲載 |
Feb. 17, 2018, 10:37 a.m. |
| Summary | Heap-based buffer overflow in Microsoft Office Excel 2007 SP1 and SP2 and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allows remote attackers to execute arbitrary code via a crafted spreadsheet in which "a MDXSET record is broken up into several records," aka "Microsoft Office Excel MDXSET Record Heap Overflow Vulnerability." |
|---|---|
| Publication Date | March 11, 2010, 7:30 a.m. |
| Registration Date | Jan. 29, 2021, 10:56 a.m. |
| Last Update | Oct. 13, 2018, 6:56 a.m. |
| Configuration1 | or higher | or less | more than | less than | |
| cpe:2.3:a:microsoft:excel:2002:sp3:*:*:*:*:*:* | |||||
| cpe:2.3:a:microsoft:excel:2003:sp3:*:*:*:*:*:* | |||||
| cpe:2.3:a:microsoft:excel:2007:sp1:*:*:*:*:*:* | |||||
| cpe:2.3:a:microsoft:excel:2007:sp2:*:*:*:*:*:* | |||||
| cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:* | |||||
| cpe:2.3:a:microsoft:office:2008:*:mac:*:*:*:*:* | |||||
| cpe:2.3:a:microsoft:office_compatibility_pack:2007:sp1:*:*:*:*:*:* | |||||
| cpe:2.3:a:microsoft:office_compatibility_pack:2007:sp2:*:*:*:*:*:* | |||||
| cpe:2.3:a:microsoft:office_excel_viewer:*:sp1:*:*:*:*:*:* | |||||
| cpe:2.3:a:microsoft:office_excel_viewer:*:sp2:*:*:*:*:*:* | |||||
| cpe:2.3:a:microsoft:office_sharepoint_server:2007:sp1:x32:*:*:*:*:* | |||||
| cpe:2.3:a:microsoft:office_sharepoint_server:2007:sp1:x64:*:*:*:*:* | |||||
| cpe:2.3:a:microsoft:office_sharepoint_server:2007:sp2:x32:*:*:*:*:* | |||||
| cpe:2.3:a:microsoft:office_sharepoint_server:2007:sp2:x64:*:*:*:*:* | |||||
| cpe:2.3:a:microsoft:open_xml_file_format_converter:*:*:mac:*:*:*:*:* | |||||