Signature Detail

Short Name	HTTP:STC:DL:XLS-LBL-RECORD
Severity	High
Recommended	No
Recommended Action	Drop
Category	HTTP
Keywords	Microsoft Excel Malformed Lbl record Remote Code Execution
Release Date	2011/09/12
Update Number	1992
Supported Platforms	idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Microsoft Excel Malformed Lbl record Remote Code Execution

This signature detects attempts to exploit a known issue with Microsoft Excel. A successful attack can lead to arbitrary code execution.

Extended Description

Microsoft Excel is prone to a remote code-execution vulnerability. Attackers could exploit this issue by enticing victims to open a maliciously crafted Excel file. Successful exploits will allow attackers to execute arbitrary code with the privileges of the user running the application.

Affected Products

Microsoft Excel 2003 SP1
Microsoft Excel 2003 SP2
Microsoft Excel 2003 SP3
Microsoft Excel 2003
Microsoft Excel 2007 SP1
Microsoft Excel 2007 SP2
Microsoft Excel 2007
Microsoft Excel Viewer SP2
Microsoft Office 2004 for Mac
Microsoft Office 2008 for Mac
Microsoft Office Compatibility Pack 2007 SP1
Microsoft Office Compatibility Pack 2007 SP2
Microsoft Office Compatibility Pack 2007
Microsoft Open Xml File Format Converter Mac

References

BugTraq: 49478
CVE: CVE-2011-1988

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: Microsoft Excel Malformed Lbl record Remote Code Execution

Extended Description

Affected Products

References