Signature Detail

HTTP: Microsoft Office Excel Sheet Object Type Confusion

This signature detects attempts to exploit a known code execution vulnerability exists in Microsoft Office Excel. It is due to a memory corruption error when processing a malformed BoundSheet record in an Excel spreadsheet. This can be exploited by remote unauthenticated attackers to execute arbitrary code on the target machine by enticing a user into opening a specially crafted Excel document. In a successful attack, the behavior of the target machine depends entirely on the logic of the injected code, which runs within the security context of the logged on user. In an unsuccessful attack, the vulnerable application can terminate abnormally.

Extended Description

Microsoft Excel is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing victims into opening a specially crafted Excel ('.xls') file. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running the application.

Affected Products

• Microsoft Excel 2002 SP1
• Microsoft Excel 2002 SP2
• Microsoft Excel 2002 SP3
• Microsoft Excel 2002
• Microsoft Excel 2003 SP1
• Microsoft Excel 2003 SP2
• Microsoft Excel 2003 SP3
• Microsoft Excel 2003
• Microsoft Excel 2007 SP1
• Microsoft Excel 2007 SP2
• Microsoft Excel 2007
• Microsoft Excel Viewer SP1
• Microsoft Excel Viewer SP2
• Microsoft Excel Viewer
• Microsoft Office 2004 for Mac
• Microsoft Office 2008 for Mac
• Microsoft Office Compatibility Pack 2007 SP1
• Microsoft Office Compatibility Pack 2007 SP2
• Microsoft Office Compatibility Pack 2007
• Microsoft Open XML File Format Converter for Mac

References

• BugTraq: 38550
• CVE: CVE-2010-0258