[Forgot Password]
Login  Register Subscribe

30480

 
 

423868

 
 

253164

 
 

909

 
 

197077

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2015-2378Date: (C)2015-07-16   (M)2023-12-22


Untrusted search path vulnerability in Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel Viewer 2007 SP3, and Office Compatibility Pack SP3 allows local users to gain privileges via a Trojan horse DLL in the current working directory, aka "Microsoft Excel DLL Remote Code Execution Vulnerability."

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 6.9
Exploit Score: 3.4
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
SECTRACK-1032899
MS15-070

CPE    5
cpe:/a:microsoft:excel_viewer:2007:sp3
cpe:/a:microsoft:excel:2007:sp3
cpe:/a:microsoft:excel:2010:sp2:~~~~x64~
cpe:/a:microsoft:excel:2010:sp2:~~~~x86~
...
OVAL    2
oval:org.secpod.oval:def:25367
oval:org.secpod.oval:def:25359

© SecPod Technologies