Summary
This host is missing a critical security update according to Microsoft Bulletin MS10-080.
Impact
Successful exploitation could allow attackers to execute arbitrary code by tricking a user into opening a malicious Excel file.
Impact Level: System/Application
Solution
Run Windows Update and update the listed hotfixes or download and update mentioned hotfixes in the advisory from the below link, http://www.microsoft.com/technet/security/bulletin/ms10-080.mspx
Insight
The flaws are due to:
- An integer overflow error when processing record information - A memory corruption error when processing malformed records - A memory corruption error when processing malformed Lotus 1-2-3 workbook (.wk3) file.
- A memory corruption error when processing malformed formula information - A memory corruption error when processing malformed formula BIFF records - An out-of-bounds array when processing malformed records - An invalid pointer when processing malformed Merge Cell records.
- A memory corruption error when processing negative future functions - An out-of-boundary access when processing malformed records - An array indexing error when processing malformed Real Time Data records - An out-of-bounds memory write when processing malformed data - A memory corruption error when processing malformed Ghost records
Affected
Microsoft Excel Viewer Service Pack 2
Microsoft Office Excel 2002 Service Pack 3
Microsoft Office Excel 2003 Service Pack 3
Microsoft Office Excel 2007 Service Pack 2
Microsoft Office Compatibility Pack for Word,
Excel, and PowerPoint 2007 File Formats Service Pack 2
References
Severity
Classification
-
CVE CVE-2010-3230, CVE-2010-3231, CVE-2010-3232, CVE-2010-3233, CVE-2010-3234, CVE-2010-3235, CVE-2010-3236, CVE-2010-3237, CVE-2010-3238, CVE-2010-3239, CVE-2010-3240, CVE-2010-3241, CVE-2010-3242 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Microsoft .NET Framework Remote Code Execution Vulnerability (2745030)
- Cumulative Security Update for Internet Explorer (937143)
- Embedded OpenType Font Engine Remote Code Execution Vulnerability (982132)
- Microsoft GDI+ Remote Code Execution Vulnerability (2489979)
- Cumulative Patch for Internet Information Services (Q327696)