CVE-2011-0978

Microsoft Excel - Memory Corruption

Title source: rule

Exploitation Summary

EIP tracks 1 public exploit for CVE-2011-0978. PoCs published by webDEViL.

AI-analyzed exploit summary This is a proof-of-concept exploit for CVE-2011-0978, targeting a buffer overflow vulnerability in Microsoft Office Excel's Axis Properties Record parsing. The exploit manipulates specific file locations to trigger the overflow, potentially leading to remote code execution.

Description

Stack-based buffer overflow in Microsoft Excel 2002 SP3, 2003 SP3, and 2007 SP2; Office 2004 for Mac; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2 allows remote attackers to execute arbitrary code via vectors related to an axis properties record, and improper incrementing of an array index, aka "Excel Array Indexing Vulnerability."

Exploits (1)

exploitdb WORKING POC VERIFIED

by webDEViL · pythondoswindows

https://www.exploit-db.com/exploits/17227

View Code ZIP pw:eip

This is a proof-of-concept exploit for CVE-2011-0978, targeting a buffer overflow vulnerability in Microsoft Office Excel's Axis Properties Record parsing. The exploit manipulates specific file locations to trigger the overflow, potentially leading to remote code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Microsoft Office Excel (versions affected by MS11-021)

No auth needed

Prerequisites: Victim must open a malicious Excel file

MITRE ATT&CK