CVE-2015-2520

Microsoft Excel 2007/2010/2011/2016 & Office Compatibility Pack - Remote Code Execution

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-2520. PoCs published by Google Security Research.

AI-analyzed exploit summary This exploit demonstrates a use-after-free vulnerability in Microsoft Office 2007 (Excel.exe 12.0.6718.5000) by manipulating BIFFRecord lengths in an XLS file, leading to a crash due to accessing freed heap memory.

Description

Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel for Mac 2011 and 2016, Office Compatibility Pack SP3, and Excel Viewer allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."

Exploits (1)

exploitdb WORKING POC VERIFIED
by Google Security Research · textdoswindows
https://www.exploit-db.com/exploits/38215

This exploit demonstrates a use-after-free vulnerability in Microsoft Office 2007 (Excel.exe 12.0.6718.5000) by manipulating BIFFRecord lengths in an XLS file, leading to a crash due to accessing freed heap memory.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target: Microsoft Office 2007 (Excel.exe 12.0.6718.5000)
No auth needed
Prerequisites: Microsoft Office 2007 with Office File Validation Add-In disabled · Application Verifier enabled for testing
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1033488
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/38215/

Scores

EPSS 0.2769
EPSS Percentile 97.8%

Details

CWE
CWE-119
Status published
Products (7)
microsoft/excel 2007 sp3
microsoft/excel 2010 sp2 (2 CPE variants)
microsoft/excel 2011
microsoft/excel 2013 sp1 (2 CPE variants)
microsoft/excel 2016
microsoft/excel_viewer
microsoft/office_compatibility_pack
Published Sep 09, 2015
Tracked Since Feb 18, 2026