Microsoft Excel OBJECT Record Remote Code Execution Vulnerability

Microsoft Excel is prone to a remote code-execution vulnerability because it fails to handle exceptional conditions.

Successfully exploiting this issue allows attackers to corrupt process memory and to execute arbitrary code in the context of targeted users.

Note that Microsoft Office applications include functionality to embed Office files as objects contained in other Office files. As an example, Microsoft Word files may contain embedded malicious Microsoft Excel files, making Word documents another possible attack vector.


 

Privacy Statement
Copyright 2010, SecurityFocus