Release of invalid pointer or reference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
The product attempts to return a memory resource to the system, but it calls the wrong release function or calls the appropriate release function incorrectly.
Name | Vendor | Start Version | End Version |
---|---|---|---|
365_apps | Microsoft | - (including) | - (including) |
Excel | Microsoft | 2016 (including) | 2016 (including) |
Office | Microsoft | 2019 (including) | 2019 (including) |
Office_long_term_servicing_channel | Microsoft | 2021 (including) | 2021 (including) |
Office_long_term_servicing_channel | Microsoft | 2024 (including) | 2024 (including) |
Office_online_server | Microsoft | * | 16.0.10417.20010 (excluding) |
This weakness can take several forms, such as: