VYPR
Unrated severityNVD Advisory· Published Mar 10, 2010· Updated Jun 16, 2026

CVE-2010-0262

CVE-2010-0262

Description

Microsoft Office Excel 2007 SP1 and SP2 and Office 2004 for Mac do not properly parse the Excel file format, which allows remote attackers to execute arbitrary code via a crafted spreadsheet that triggers access of an uninitialized stack variable, aka "Microsoft Office Excel FNGROUPNAME Record Uninitialized Memory Vulnerability."

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

17
  • Microsoft/Excel4 versions
    cpe:2.3:a:microsoft:excel:2002:sp3:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:microsoft:excel:2002:sp3:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:excel:2003:sp3:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:excel:2007:sp1:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:excel:2007:sp2:*:*:*:*:*:*
  • Microsoft/Office2 versions
    cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*+ 1 more
    • cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*
    • cpe:2.3:a:microsoft:office:2008:*:mac:*:*:*:*:*
  • cpe:2.3:a:microsoft:office_compatibility_pack:2007:sp1:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:microsoft:office_compatibility_pack:2007:sp1:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_compatibility_pack:2007:sp2:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:office_excel_viewer:*:sp1:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:microsoft:office_excel_viewer:*:sp1:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_excel_viewer:*:sp2:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:office_sharepoint_server:2007:sp1:x32:*:*:*:*:*+ 3 more
    • cpe:2.3:a:microsoft:office_sharepoint_server:2007:sp1:x32:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_sharepoint_server:2007:sp1:x64:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_sharepoint_server:2007:sp2:x32:*:*:*:*:*
    • cpe:2.3:a:microsoft:office_sharepoint_server:2007:sp2:x64:*:*:*:*:*
  • cpe:2.3:a:microsoft:open_xml_file_format_converter:*:*:mac:*:*:*:*:*
  • Range: SP1, SP2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.