Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: New MS Excel vulnerability could allow remote code execution SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
New MS Excel vulnerability could allow remote code execution

Microsoft has just released an advisory and blog entry on a newly discovered vulnerability in MS Excel products. The vulnerability is, according to the blog, already actively exploited by targeted attacks.  Excel 2003SP3 and Excel 2007 are not affected, but most other versions are.

Daniel

371 Posts
ISC Handler
Jan 16th 2008

Sign Up for Free or Log In to start participating in the conversation!