CVE-2014-6361
Microsoft Excel 2007 SP3, 2010 SP2, 2013 Gold/SP1, 2013 RT Gold/SP1 - Remote Code Execution via Crafted Office Document
Title source: llmDescription
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 Gold and SP1, Excel 2013 RT Gold and SP1, and Office Compatibility Pack allow remote attackers to execute arbitrary code via a crafted Office document, aka "Excel Invalid Pointer Remote Code Execution Vulnerability."
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
x_refsource_ms
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-083
Scores
EPSS
0.1335
EPSS Percentile
95.9%
Details
CWE
CWE-94
Status
published
Products (4)
microsoft/excel
2007 sp3
microsoft/excel
2010 sp2 (2 CPE variants)
microsoft/excel
2013 (2 CPE variants)
microsoft/office_compatibility_pack
Published
Dec 11, 2014
Tracked Since
Feb 18, 2026