Microsoft Excel WOPT Record Parsing Heap Memory Corruption

2010.09.22
Credit: Abysssec
Risk: High
Local: No
Remote: Yes
CVE: CVE-2010-1248
CWE: CWE-94


CVSS Base Score: 9.3/10
Impact Subscore: 10/10
Exploitability Subscore: 8.6/10
Exploit range: Remote
Attack complexity: Medium
Authentication: No required
Confidentiality impact: Complete
Integrity impact: Complete
Availability impact: Complete

''' __ __ ____ _ _ ____ | \/ |/ __ \ /\ | | | | _ \ | \ / | | | | / \ | | | | |_) | | |\/| | | | |/ /\ \| | | | _ < (day 21 binary analysis) | | | | |__| / ____ \ |__| | |_) | |_| |_|\____/_/ \_\____/|____/ ''' Title : Microsoft Excel WOPT Record Parsing Heap Memory Corruption Version : Excel 2002 SP3 Analysis : http://www.abysssec.com Vendor : http://www.microsoft.com Impact : High Contact : shahin [at] abysssec.com , info [at] abysssec.com Twitter : @abysssec CVE : CVE-2010-1248 here is BA : http://www.exploit-db.com/moaub-21-microsoft-excel-wopt-record-parsing-heap-memory-corruption/ here is the PoC : http://www.exploit-db.com/sploits/moaub-12-exploit.rar

References:

http://www.us-cert.gov/cas/techalerts/TA10-159B.html
http://www.microsoft.com/technet/security/bulletin/ms10-038.mspx
http://www.securityfocus.com/bid/40526
http://www.securityfocus.com/archive/1/archive/1/511765/100/0/threaded
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:7223
http://osvdb.org/65235


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top