Test Kennung:	1.3.6.1.4.1.25623.1.0.902133
Kategorie:	Windows : Microsoft Bulletins
Titel:	Microsoft Office Excel Multiple Vulnerabilities (980150)
Zusammenfassung:	This host is missing a critical security update according to; Microsoft Bulletin MS10-017.
Beschreibung:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS10-017. Vulnerability Insight: - Memory corruption error when processing malformed 'EntExU2', 'BRAI' 'MDXTuple', 'ContinueFRT12', 'MDXSet', 'ContinueFRT12', 'FnGroupName', 'BuiltInFnGroupCount', 'DbOrParamQry' and 'FnGrp12' records, which could be exploited by attackers to execute arbitrary code by tricking a user into opening a specially crafted Excel document. - An uninitialized pointer error when processing malformed data. Vulnerability Impact: Successful exploitation could allow execution of arbitrary code on the remote system and corrupt memory, cause buffer overflow via a specially crafted Excel file. Affected Software/OS: - Microsoft Excel Viewer 2003/2007 - Microsoft Office Excel 2002/2003/2007 - Microsoft Office Compatibility Pack for, Excel, PowerPoint 2007 File Formats SP 1/2 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2010-0257 Cert/CC Advisory: TA10-068A http://www.us-cert.gov/cas/techalerts/TA10-068A.html Microsoft Security Bulletin: MS10-017 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-017 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8617 http://www.securitytracker.com/id?1023698 Common Vulnerability Exposure (CVE) ID: CVE-2010-0258 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=859 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8545 Common Vulnerability Exposure (CVE) ID: CVE-2010-0260 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=862 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7862 Common Vulnerability Exposure (CVE) ID: CVE-2010-0261 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=861 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8479 Common Vulnerability Exposure (CVE) ID: CVE-2010-0262 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=860 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8562 Common Vulnerability Exposure (CVE) ID: CVE-2010-0263 Bugtraq: 20100309 ZDI-10-025: Microsoft Office Excel XLSX File Parsing Remote Code Execution Vulnerability (Google Search) http://www.securityfocus.com/archive/1/509979/100/0/threaded http://www.zerodayinitiative.com/advisories/ZDI-10-025/ https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8407 Common Vulnerability Exposure (CVE) ID: CVE-2010-0264 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7888
Copyright	Copyright (C) 2010 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.