CVE-2015-0097

Microsoft Excel - Remote Code Execution

Title source: rule

Description

Microsoft Excel 2007 SP3, PowerPoint 2007 SP3, Word 2007 SP3, Excel 2010 SP2, PowerPoint 2010 SP2, and Word 2010 SP2 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Word Local Zone Remote Code Execution Vulnerability."

Exploits (1)

exploitdb SUSPICIOUS
by Eduardo Braun Prado · textlocalwindows
https://www.exploit-db.com/exploits/37657

References (3)

Scores

EPSS 0.7941
EPSS Percentile 99.1%

Details

CWE
CWE-19
Status published
Products (6)
microsoft/excel 2007 sp3
microsoft/excel 2010 sp2 (2 CPE variants)
microsoft/powerpoint 2007 sp3
microsoft/powerpoint 2010 sp2
microsoft/word 2007 sp3
microsoft/word 2010 sp2
Published Mar 11, 2015
Tracked Since Feb 18, 2026