Signature Detail

Short Name	HTTP:STC:DL:XLS-NAMED-GRAPH
Severity	High
Recommended	No
Recommended Action	Drop
Category	HTTP
Keywords	Microsoft Excel BIFF File Format Named Graph Record Parsing Stack Overflow
Release Date	2010/10/07
Update Number	1787
Supported Platforms	idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Microsoft Excel BIFF File Format Named Graph Record Parsing Stack Overflow

This signature detects attempts to exploit a known vulnerability against Microsoft Office Excel. A successful attack can lead to arbitrary code execution.

Extended Description

Microsoft Excel is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of a victim user running the application. A successful exploit will result in the compromise of the application and may aid in further attacks.

Affected Products

Avaya Customer Interaction Express (CIE) User Interface 1.0
Microsoft Excel 2000 SP2
Microsoft Excel 2000 SP3
Microsoft Excel 2000
Microsoft Excel 2002 SP1
Microsoft Excel 2002 SP2
Microsoft Excel 2002 SP3
Microsoft Excel 2002
Microsoft Excel 2003 SP1
Microsoft Excel 2003 SP2
Microsoft Excel 2003 SP3
Microsoft Excel 2003
Microsoft Office Excel Viewer 2003

References

BugTraq: 23760
CVE: CVE-2007-0215

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: Microsoft Excel BIFF File Format Named Graph Record Parsing Stack Overflow

Extended Description

Affected Products

References