Unrated severityNVD Advisory· Published Apr 13, 2011· Updated Apr 29, 2026

CVE-2011-0104

Description

Microsoft Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted HLink record in an Excel file, aka "Excel Buffer Overwrite Vulnerability."

Affected products

Microsoft/Excel2 versions
cpe:2.3:a:microsoft:excel:2002:sp3:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:microsoft:excel:2002:sp3:*:*:*:*:*:*
- cpe:2.3:a:microsoft:excel:2003:sp3:*:*:*:*:*:*
Microsoft/Office2 versions
cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*+ 1 more
- cpe:2.3:a:microsoft:office:2004:*:mac:*:*:*:*:*
- cpe:2.3:a:microsoft:office:2008:*:mac:*:*:*:*:*
Microsoft/Open Xml File Format Converter
cpe:2.3:a:microsoft:open_xml_file_format_converter:*:*:mac:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/39122nvdVendor Advisory
www.vupen.com/english/advisories/2011/0940nvdVendor Advisory
www.us-cert.gov/cas/techalerts/TA11-102A.htmlnvdUS Government Resource
osvdb.org/71761nvd
www.checkpoint.com/defense/advisories/public/2011/cpai-31-Mard.htmlnvd
www.securityfocus.com/bid/47245nvd
www.securitytracker.com/idnvd
docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-021nvd
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11767nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.062
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000