Microsoft Excel contains a memory corruption vulnerability. This vulnerability may allow a remote attacker to execute arbitrary code on a vulnerable system.
Microsoft Excel fails to properly validate description fields in Excel data files. When a file with a malformed description is opened in Excel, system memory can be corrupted in a way that may allow an attacker to execute arbitrary code.
More information is available in MS06-012.
A remote unauthenticated attacker may be able to execute arbitrary code.
Apply a patch from your vendor
This issue was reported in Microsoft Security Bulletin MS06-012. Microsoft credits Dejun of the Fortinet Security Response Team with providing information regarding these issues.
This document was written by Jeff Gennari.
|Date First Published:||2006-03-14|
|Date Last Updated:||2006-03-14 19:59 UTC|