CVE-2010-0262 Information

Description

Microsoft Office Excel 2007 SP1 and SP2 and Office 2004 for Mac do not properly parse the Excel file format which allows remote attackers to execute arbitrary code via a crafted spreadsheet that triggers access of an uninitialized stack variable aka \Microsoft Office Excel FNGROUPNAME Record Uninitialized Memory Vulnerability.\

Reference

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=860 http://www.securitytracker.com/id?1023698 http://www.us-cert.gov/cas/techalerts/TA10-068A.html https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-017 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A8562