Skip to main content

Microsoft Office Excel Multiple Memory Corruption Vulnerabilities( 15 April 2009 )

Last Update Date: 28 Jan 2011 Release Date: 15 Apr 2009 5085 Views

RISK: Medium Risk

1. Memory Corruption Vulnerability

A remote code execution vulnerability exists in Microsoft Office Excel that could allow remote code execution if a user opens a specially crafted Excel file that includes a malformed object. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

2. Memory Corruption Vulnerability

A remote code execution vulnerability exists in Microsoft Office Excel that could allow remote code execution if a user opens a specially crafted Excel file that includes a malformed object. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.


Impact

  • Remote Code Execution

System / Technologies affected

  • Microsoft Office 2000
    - Microsoft Office Excel 2000
  • Microsoft Office XP
    - Microsoft Office Excel 2002
  • Microsoft Office 2003
    - Microsoft Office Excel 2003
  • 2007 Microsoft Office System
    - Microsoft Office Excel 2007
  • Microsoft Office 2004 for Mac
  • Microsoft Office 2008 for Mac
  • Microsoft Office Excel Viewer
  • Microsoft Office Excel Viewer 2003
  • Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Download locations for this patch


Vulnerability Identifier


Source


Related Link