CVE-2010-1250

CVE Database · CVE-2010-1250

CVE-2010-1250

· N/AModified

CVSS v3.1

N/A

EPSS

23.84%

Published

Jun 8, 2010

Modified

Apr 28, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Heap-based buffer overflow in Microsoft Office Excel 2002 SP3, Office 2004 for Mac, Office 2008 for Mac, and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via an Excel file with malformed (1) EDG (0x88) and (2) Publisher (0x89) records, aka "Excel EDG Memory Corruption Vulnerability."

Weaknesses (CWE)

CWE-94

Affected Products (4)

microsoft · excelvulnerable

microsoft · officevulnerable

microsoft · open_xml_file_format_convertervulnerable

References (10)

http://www.securityfocus.com/archive/1/511756/100/0/threaded

http://www.securityfocus.com/bid/40528

http://www.us-cert.gov/cas/techalerts/TA10-159B.html

US Government Resource

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-038