Vulnerability Note VU#821772

Microsoft Excel fails to properly handle Lotus 1-2-3 files

Original Release date: 10 Oct 2006 | Last revised: 27 Feb 2007


Microsoft Excel contains a vulnerability in the handling of malformed Lotus 1-2-3 files, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system.


Microsoft Excel contains an unspecified vulnerability that could be exploited when Excel opens a specially crafted Lotus 1-2-3 document. This vulnerability affects both Windows and Mac versions of Excel.


By convincing a user to open a specially crafted Lotus 1-2-3 document, an attacker could execute arbitrary code with the privileges of the user running Excel. If the user is logged in with administrative privileges, the attacker could take complete control of a vulnerable system. This vulnerability may also cause Excel to crash.


Apply an update

This vulnerability is addressed in Microsoft Security Bulletin MS06-059.

Do not open untrusted Lotus 1-2-3 documents

Do not open unfamiliar or unexpected Lotus 1-2-3 or other Office documents, particularly those hosted on web sites or delivered as email attachments. Please see Cyber Security Tip ST04-010.

Systems Affected (Learn More)

VendorStatusDate NotifiedDate Updated
Microsoft CorporationAffected-10 Oct 2006
If you are a vendor and your product is affected, let us know.

CVSS Metrics (Learn More)

Group Score Vector
Base N/A N/A
Temporal N/A N/A
Environmental N/A N/A



This vulnerability was publicly disclosed by Benjamin Tobias Franz.

This document was written by Will Dormann.

Other Information

  • CVE IDs: CVE-2006-3867
  • Date Public: 10 Oct 2006
  • Date First Published: 10 Oct 2006
  • Date Last Updated: 27 Feb 2007
  • Severity Metric: 38.73
  • Document Revision: 4


If you have feedback, comments, or additional information about this vulnerability, please send us email.