← Back

CVE-2012-0142

nvd nist
Published: May 9, 2012Modified: Apr 29, 2026

JSON object

Loading...
9.3
Vector
AV:N/AC:M/Au:N/C:C/I:C/A:C
Exploitability: 8.6 / Impact: 10.0
Source: NVD

Description

Microsoft Excel 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Office 2008 for Mac; Excel Viewer; and Office Compatibility Pack SP2 and SP3 do not properly handle memory during the opening of files, which allows remote attackers to execute arbitrary code via a crafted spreadsheet, aka "Excel File Format Memory Corruption in OBJECTLINK Record Vulnerability."

Affected (9)

Microsoft
4 products
Excel
Excel Viewer
Office
Office Compatibility Pack
Configuration A
9 vulnerable
Vulnerable SoftwareAffected Versions
Microsoft
Excel
Version 2003 sp3
Excel
Version 2007 sp2
Excel
Version 2007 sp3
Excel
Version 2010
Excel
Version 2010 sp1
Excel Viewer
All versions
Office
Version 2008
Microsoft
Office Compatibility Pack
All versions
Office Compatibility Pack
All versions

Related CWEs

CWE-399
CWE-399

References (12)

Source: secure@microsoft.com
Source: secure@microsoft.com
Source: secure@microsoft.com
Source: secure@microsoft.com
US Government Resource
Source: secure@microsoft.com
Source: secure@microsoft.com
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.