Microsoft Excel Multiple Vulnerabilities
Author: Dave Lewis
From Secunia:
Description:
Multiple vulnerabilities have been reported in Microsoft Excel, which can be exploited by malicious people to compromise a user’s system.
1) An error within the processing of IMDATA records can be exploited to corrupt memory via a file containing a specially crafted IMDATA record.
2) An error when processing records can be exploited to corrupt memory via a file containing a specially crafted record.
3) An error when processing strings can be exploited to corrupt memory via a file containing a specially crafted string.
4) An error when processing column records can be exploited to corrupt memory via a file containing a column record with in out-of-range value.
5) A boundary error when processing palette records can be exploited to cause a heap-based buffer overflow via a file containing a specially crafted palette record with a large amount of entries.
Successful exploitation of the vulnerabilities allows execution of arbitrary code.
Tags: Microsoft, Excel, Vulnerabilities
