Severity: : Critical
  CVE Kennungen: : CVE-2010-1248,MS10-038
  Advisory Date: 21 lipca 2015

  DESCRIPTION

Buffer overflow in Microsoft Office Excel 2002 SP3 and Office 2004 for Mac allows remote attackers to execute arbitrary code via an Excel file with a malformed HFPicture (0x866) record, aka "Excel HFPicture Memory Corruption Vulnerability."

  INFORMATION EXPOSURE

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1004214
  Trend Micro Deep Security DPI Rule Name: 1004214 - Excel HFPicture Memory Corruption Vulnerability

  AFFECTED SOFTWARE AND VERSION:

  • Microsoft Excel 2002
  • Microsoft Office 2004