Microsoft Excel Malformed Formula Size Remote Code Execution Vulnerability
BID:17108
Info
Microsoft Excel Malformed Formula Size Remote Code Execution Vulnerability
| Bugtraq ID: | 17108 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 14 2006 12:00AM |
| Updated: | Apr 06 2006 08:18PM |
| Credit: | Discovery is credited to Dejun Meng of the Fortinet Security Response Team. |
| Vulnerable: |
Nortel Networks Optivity Telephony Manager (OTM) Nortel Networks MCS 5200 3.0 Nortel Networks MCS 5100 3.0 Nortel Networks IP softphone 2050 Nortel Networks Enterprise Network Management System Microsoft Excel x for Mac 0 Microsoft Excel Viewer 2003 0 Microsoft Excel 2004 for Mac 0 Microsoft Excel 2003 SP1 Microsoft Excel 2003 Microsoft Excel 2002 SP3 Microsoft Excel 2002 SP2 Microsoft Excel 2002 SP1 Microsoft Excel 2002 Microsoft Excel 2000 SR1 Microsoft Excel 2000 SP3 Microsoft Excel 2000 SP2 Microsoft Excel 2000 Avaya Modular Messaging (MAS) 3.0 |
| Not Vulnerable: | |
Discussion
Microsoft Excel Malformed Formula Size Remote Code Execution Vulnerability
Microsoft Excel is prone to a remote code-execution vulnerability. This issue may be triggered when an Excel document with a malformed formula size is opened.
Microsoft Excel is prone to a remote code-execution vulnerability. This issue may be triggered when an Excel document with a malformed formula size is opened.
Exploit / POC
Microsoft Excel Malformed Formula Size Remote Code Execution Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Solution / Fix
Microsoft Excel Malformed Formula Size Remote Code Execution Vulnerability
Solution:
Microsoft has released fixes to address this vulnerability in supported versions of the affected software.
Avaya has released advisory ASA-2006-069 to identify vulnerable Avaya products. Avaya advises customers to apply patches released by Microsoft. Please see references for more information.
Microsoft Excel 2000 SR1
Microsoft Excel x for Mac 0
Microsoft Excel 2003 SP1
Microsoft Excel 2002 SP2
Microsoft Excel 2000 SP2
Microsoft Excel 2003
Microsoft Excel 2004 for Mac 0
Microsoft Excel 2002 SP3
Microsoft Excel 2002 SP1
Microsoft Excel 2002
Microsoft Excel 2000
Microsoft Excel 2000 SP3
Microsoft Excel Viewer 2003 0
Solution:
Microsoft has released fixes to address this vulnerability in supported versions of the affected software.
Avaya has released advisory ASA-2006-069 to identify vulnerable Avaya products. Avaya advises customers to apply patches released by Microsoft. Please see references for more information.
Microsoft Excel 2000 SR1
-
Microsoft Security Update for Excel 2000 (KB905757)
http://www.microsoft.com/downloads/details.aspx?familyid=C9433440-31EF -4C18-A0C7-B595EA23F6FC&displaylang=en
Microsoft Excel x for Mac 0
-
Microsoft Microsoft Office 2004 for Mac 11.2.3 Update
http://download.microsoft.com/download/9/C/9/9C90BD77-92B0-4A2A-B4CE-F 41C560360CE/Office2004-1123UpdateEN.dmg
Microsoft Excel 2003 SP1
-
Microsoft Security Update for Excel 2003 (KB905756)
http://www.microsoft.com/downloads/details.aspx?FamilyId=AC22F83A-B409 -4469-984E-6C19D8F5FE41&displaylang=en
Microsoft Excel 2002 SP2
-
Microsoft Security Update for Excel 2002 (KB905755)
http://www.microsoft.com/downloads/details.aspx?FamilyId=643337C7-8A47 -4FA3-AB58-7A916B33607D&displaylang=en
Microsoft Excel 2000 SP2
-
Microsoft Security Update for Excel 2000 (KB905757)
http://www.microsoft.com/downloads/details.aspx?familyid=C9433440-31EF -4C18-A0C7-B595EA23F6FC&displaylang=en
Microsoft Excel 2003
-
Microsoft Security Update for Excel 2003 (KB905756)
http://www.microsoft.com/downloads/details.aspx?FamilyId=AC22F83A-B409 -4469-984E-6C19D8F5FE41&displaylang=en
Microsoft Excel 2004 for Mac 0
-
Microsoft Microsoft Office 2004 for Mac 11.2.3 Update
http://download.microsoft.com/download/9/C/9/9C90BD77-92B0-4A2A-B4CE-F 41C560360CE/Office2004-1123UpdateEN.dmg
Microsoft Excel 2002 SP3
-
Microsoft Security Update for Excel 2002 (KB905755)
http://www.microsoft.com/downloads/details.aspx?FamilyId=643337C7-8A47 -4FA3-AB58-7A916B33607D&displaylang=en
Microsoft Excel 2002 SP1
-
Microsoft Security Update for Excel 2002 (KB905755)
http://www.microsoft.com/downloads/details.aspx?FamilyId=643337C7-8A47 -4FA3-AB58-7A916B33607D&displaylang=en
Microsoft Excel 2002
-
Microsoft Security Update for Excel 2002 (KB905755)
http://www.microsoft.com/downloads/details.aspx?FamilyId=643337C7-8A47 -4FA3-AB58-7A916B33607D&displaylang=en
Microsoft Excel 2000
-
Microsoft Security Update for Excel 2000 (KB905757)
http://www.microsoft.com/downloads/details.aspx?familyid=C9433440-31EF -4C18-A0C7-B595EA23F6FC&displaylang=en
Microsoft Excel 2000 SP3
-
Microsoft Security Update for Excel 2000 (KB905757)
http://www.microsoft.com/downloads/details.aspx?familyid=C9433440-31EF -4C18-A0C7-B595EA23F6FC&displaylang=en
Microsoft Excel Viewer 2003 0
-
Microsoft Security Update for Excel Viewer 2003 (KB914451)
http://www.microsoft.com/downloads/details.aspx?FamilyId=7DBADBD1-0542 -475B-91B5-90DD2AF2C0FC&displaylang=en
References
Microsoft Excel Malformed Formula Size Remote Code Execution Vulnerability
References:
References:
- ASA-2006-069 - Windows Security Updates for March 2006 - (MS06-011 MS06-012) (Avaya)
- Microsoft Security Bulletin MS06-012 (Microsoft)
- NORTEL RESPONSE TO MICROSOFT SECURITY BULLETIN MS06-012 (Nortel Networks)
- Fortinet Security Advisory: FSA-2006-09 (Fortinet Research)