Microsoft Excel contains an error in range validation, which may allow a remote unauthenticated attacker to execute arbitrary code on a vulnerable system.
Microsoft Excel fails to properly validate ranges in data files. When a file with a malformed range is opened in Excel, system memory can be corrupted in a way that may allow an attacker to execute arbitrary code.
By convincing a user to open a specially crafted Excel file, a remote unauthenticated attacker may be able to execute arbitrary code on a vulnerable system.
Install an update
Install an update, as specified in Microsoft Security Bulletin MS06-012.
This vulnerability was publicly disclosed by fearwall.
This document was written by Will Dormann.
|Date First Published:||2006-03-14|
|Date Last Updated:||2006-03-14 19:47 UTC|