Signature Detail

HTTP: Microsoft Office Excel SXDB Memory Corruption

A memory corruption vulnerability exists in Microsoft Office Excel. The vulnerability is due to the way Microsoft Office Excel handles Excel files containing crafted SXDB records. Remote attackers can exploit this vulnerability by enticing target users to open a malicious Excel file, potentially causing arbitrary code to be injected and executed in the security context of the current logged on user. In an attack scenario, where arbitrary code is injected and executed on the target machine, the behaviour of the target is dependent on the intention of the malicious code. If such an attack is not executed successfully, the vulnerable application may terminate abnormally.

Extended Description

Microsoft Excel is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing victims into opening a specially crafted Excel ('.xls') file. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running the application.

Affected Products

• Microsoft Excel 2002 SP1
• Microsoft Excel 2002 SP2
• Microsoft Excel 2002 SP3
• Microsoft Excel 2002
• Microsoft Excel 2003 SP1
• Microsoft Excel 2003 SP2
• Microsoft Excel 2003 SP3
• Microsoft Excel 2003
• Microsoft Office 2004 for Mac
• Microsoft Office 2008 for Mac
• Microsoft Office Excel Viewer 2003 SP3
• Microsoft Office Excel Viewer 2003
• Microsoft Open XML File Format Converter for Mac

References

• BugTraq: 36943
• CVE: CVE-2009-3127