CVE-2010-0822

MS11-038 Microsoft Office Excel Malformed OBJ Record Handling Overflow

Title source: metasploit

Description

Stack-based buffer overflow in Microsoft Office Excel 2002 SP3, Office 2004 for Mac, Office 2008 for Mac, and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via an Excel file with a crafted OBJ (0x5D) record, aka "Excel Object Stack Overflow Vulnerability."

Exploits (4)

exploitdb WORKING POC VERIFIED

by Metasploit · rubylocalwindows

https://www.exploit-db.com/exploits/18143

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Abysssec · pythonlocalwindows

https://www.exploit-db.com/exploits/15094

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by webDEViL · pythonlocalwindows

https://www.exploit-db.com/exploits/14361

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

by Nicolas Joly · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/ms10_038_excel_obj_bof.rb

View Code ZIP pw:eip

References (6)

[Third Party Advisory, VDB Entry] http://osvdb.org/65236

[US Government Resource] http://www.us-cert.gov/cas/techalerts/TA10-159B.html

[Vendor Advisory] https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-038

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/511752/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/40520

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7265

Scores

EPSS 0.8045

EPSS Percentile 99.1%

Details

CWE

CWE-94

Status published

Products (4)

microsoft/excel 2002 sp3

microsoft/office 2004

microsoft/office 2008

microsoft/open_xml_file_format_converter

Published Jun 08, 2010

Tracked Since Feb 18, 2026