There was no fix to the newest style handling vulnerability described at Bugtraq ID #18872 yet:
http://www.securityfocus.com/bid/18872/info
Additionally, Microsoft hasn't published a patch to hyperlink handling Hlink.dll vulnerability affecting Office products:
http://www.securityfocus.com/bid/18500/info
The second Excel vulnerability was reported after the Repair Mode vulnerability (included to MS06-037) in the mid-June already. It appears that they fixed issues used to targeted attacks quickly.
http://www.securityfocus.com/bid/18872/info
Additionally, Microsoft hasn't published a patch to hyperlink handling Hlink.dll vulnerability affecting Office products:
http://www.securityfocus.com/bid/18500/info
The second Excel vulnerability was reported after the Repair Mode vulnerability (included to MS06-037) in the mid-June already. It appears that they fixed issues used to targeted attacks quickly.
[ reply ]
Link to this comment: http://www.securityfocus.com/comments/newsbriefs/249/1202#1202