NVD

Id
12785  
Name
CVE-2010-1253  
Description
Microsoft Office Excel 2002 SP3, 2007 SP1, and SP2; Office 2004 for mac; Office 2008 for Mac; Open XML File Format Converter for Mac; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2; allows remote attackers to execute arbitrary code via an Excel file with crafted DBQueryExt records that allow a function call to a "user-controlled pointer," aka "Excel ADO Object Vulnerability."  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2010-06-08  
Modified Date
2010-08-21  
Seq
2010-1253  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
70446 12785 CVE-2010-1253 oval:org.mitre.oval:def:6842  View
70447 12785 CVE-2010-1253 MS10-038  View
70448 12785 CVE-2010-1253 20100608 ZDI-10-103: Microsoft Office Excel DBQueryExt Record Unspecified ADO Object Remote Code Execution Vulnerability  View
70449 12785 CVE-2010-1253 TA10-159B  View
70450 12785 CVE-2010-1253 http://www.zerodayinitiative.com/advisories/ZDI-10-103  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
35820 JVNDB-2010-001600 複数の Microsoft 製品の Excel ファイルにおける任意のコードを実行される脆弱性 複数の Microsoft 製品の Excel ファイルには、DBQueryExt レコードの処理に関して不備があるため、任意のコードを実行される脆弱性が存在します。 CVE-2010-1253 43833 CVE-2010-1253 12785 9.3 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001600.html 2010-06-08 2010-07-02 View