Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Microsoft Office Excel Multiple Vulnerabilities (972652)
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
This host is missing a critical security update according to Microsoft Bulletin MS09-067.
Insight
Insight
- An error in the parsing of Excel spreadsheets can be exploited to corrupt memory via a specially crafted Excel file. - An error in the processing of certain record objects can be exploited to corrupt memory via a specially crafted Excel file. - Another error in the processing of certain record objects can be exploited to corrupt memory via a specially crafted Excel file. - An error in the processing of Binary File Format (BIFF) records can be exploited to cause a heap-based buffer overflow via a specially crafted Excel file. - An error in the handling of formulas embedded inside a cell can be exploited to corrupt memory via a specially crafted Excel file. - An error when loading Excel formulas can be exploited to corrupt a pointer when a specially crafted Excel file is being opened. - An error when loading Excel records can be exploited to corrupt memory via a specially crafted Excel file. - An error when processing Excel record objects can be exploited via a specially crafted Excel file.
Affected Software
Affected Software
Microsoft Excel Viewer 2003/2007 Microsoft Office Excel 2002/2003/2007 Microsoft Office Compatibility Pack for Word, Excel, PowerPoint 2007 File Formats SP 1/2
Solution
Solution
The vendor has released updates. Please see the references for more information.