Content
(MS09-067) Excel Cache Memory Corruption Vulnerability (972652)
- Type
- Logic error
- Impact of exploitation
- Remote Code Execution
- User Interaction
- user interaction is needed
- Attack Vector
- Authenticated locally logged on user with limited privileges
- Rating
- Medium
- CVE reference
- CVE-2009-3127,
- Vendor Status
- Responded and patched
- Vulnerable systems
- Excel 2003 Viewer,
- Excel 2007 SP2,
- Office for Mac 2008,
- Excel Viewer 2003 SP3,
- Summary
- A remote code execution vulnerability exists in the way that Microsoft Office Excel handles specially crafted Excel files.
Tab Navigation
Description
A remote code execution vulnerability exists in the way that Microsoft Office Excel handles specially crafted Excel files. ? The vulnerability cannot be exploited automatically through e-mail. For an attack to be successful, a user must open an attachment that is sent in an e-mail message. ? An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
McAfee Product Mitigation & Recommendations
Recommendations
The Vendor has released patches to address this issue http://www.microsoft.com/technet/security/bulletin/ms09-067.mspx
McAfee Product Mitigation
McAfee Foundstone
- Signature:
- (MS09-067) Excel Cache Memory Corruption Vulnerability (972652)
- Signature identifier:
- 7319
- Release date:
- 11/10/2009
Additional Resources
(MS09-067) Excel Cache Memory Corruption Vulnerability (972652)
http://www.microsoft.com/technet/security/bulletin/ms09-067.mspx
All Information
Timeline -
11/10/2009
Vendor has provided a patch.
Description -
A remote code execution vulnerability exists in the way that Microsoft Office Excel handles specially crafted Excel files. ? The vulnerability cannot be exploited automatically through e-mail. For an attack to be successful, a user must open an attachment that is sent in an e-mail message. ? An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
McAfee Product Mitigation & Recommendations
Recommendations -
The Vendor has released patches to address this issue http://www.microsoft.com/technet/security/bulletin/ms09-067.mspx
McAfee Product Mitigation
McAfee Foundstone
- Signature:
- (MS09-067) Excel Cache Memory Corruption Vulnerability (972652)
- Signature identifier:
- 7319
- Release date:
- 11/10/2009
Additional Resources
Additional Resources -
(MS09-067) Excel Cache Memory Corruption Vulnerability (972652)
http://www.microsoft.com/technet/security/bulletin/ms09-067.mspx
