CVE-2015-2558 : Use-after-free vulnerability in Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel

Use-after-free vulnerability in Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for Mac 2011, Excel 2016 for Mac, Excel Viewer, Office Compatibility Pack SP3, and Excel Services on SharePoint Server 2007 SP3, 2010 SP2, and 2013 SP1 allows remote attackers to execute arbitrary code via a long fileVersion element in an Office document, aka "Microsoft Office Memory Corruption Vulnerability."

Published 2015-10-14 01:59:13

Updated 2025-04-12 10:46:41

Source Microsoft Corporation

View at NVD, CVE.org

Vulnerability category: Memory CorruptionExecute code

Products affected by CVE-2015-2558

Microsoft » Excel » Version: 2007 Update SP3
cpe:2.3:a:microsoft:excel:2007:sp3:*:*:*:*:*:*
Matching versions
Microsoft » Excel » Version: 2010 Update SP2 For X64
cpe:2.3:a:microsoft:excel:2010:sp2:*:*:*:*:x64:*
Matching versions
Microsoft » Excel » Version: 2013 Update SP1
cpe:2.3:a:microsoft:excel:2013:sp1:*:*:*:*:*:*
Matching versions
Microsoft » Excel » Version: 2010 Update SP2 For X86
cpe:2.3:a:microsoft:excel:2010:sp2:*:*:*:*:x86:*
Matching versions
Microsoft » Excel » Version: 2013 Update SP1 RT Edition
cpe:2.3:a:microsoft:excel:2013:sp1:*:*:rt:*:*:*
Matching versions
Microsoft » Excel » Version: 2016
cpe:2.3:a:microsoft:excel:2016:*:*:*:*:*:*:*
Matching versions
Microsoft » Excel Viewer
cpe:2.3:a:microsoft:excel_viewer:*:*:*:*:*:*:*:*
Matching versions
Microsoft » Sharepoint Server » Version: 2010 Update SP2
cpe:2.3:a:microsoft:sharepoint_server:2010:sp2:*:*:*:*:*:*
Matching versions
Microsoft » Sharepoint Server » Version: 2013 Update SP1
cpe:2.3:a:microsoft:sharepoint_server:2013:sp1:*:*:*:*:*:*
Matching versions
Microsoft » Office Sharepoint Server » Version: 2007 Update SP3 X64 Edition
cpe:2.3:a:microsoft:office_sharepoint_server:2007:sp3:x64:*:*:*:*:*
Matching versions
Microsoft » Office Sharepoint Server » Version: 2007 Update SP3 X32 Edition
cpe:2.3:a:microsoft:office_sharepoint_server:2007:sp3:x32:*:*:*:*:*
Matching versions
Microsoft » Office Compatibility Pack » Update SP3
cpe:2.3:a:microsoft:office_compatibility_pack:*:sp3:*:*:*:*:*:*
Matching versions
Microsoft » Excel For Mac » Version: 2016
cpe:2.3:a:microsoft:excel_for_mac:2016:*:*:*:*:*:*:*
Matching versions
Microsoft » Excel For Mac » Version: 2011
cpe:2.3:a:microsoft:excel_for_mac:2011:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2015-2558

EPSS FAQ

33.43%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 97 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2015-2558

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
9.3	HIGH	AV:N/AC:M/Au:N/C:C/I:C/A:C	8.6	10.0	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

References for CVE-2015-2558

http://www.zerodayinitiative.com/advisories/ZDI-15-516

ZDI-15-516 | Zero Day Initiative
Third Party Advisory;VDB Entry
http://www.securitytracker.com/id/1033803

Microsoft Office Flaws Let Remote Users Execute Arbitrary Code and Conduct Cross-Site Scripting Attacks - SecurityTracker
Third Party Advisory;VDB Entry

CVEs referencing this url
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-110

Microsoft Security Bulletin MS15-110 - Important | Microsoft Docs

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2015-2558

Products affected by CVE-2015-2558

Exploit prediction scoring system (EPSS) score for CVE-2015-2558

CVSS scores for CVE-2015-2558

References for CVE-2015-2558