Security News -  Security Reviews -   Exploits -  Tools -  UNIX Focus -  Windows Focus
SecuriTeam™  Beyond Security®  SecuriTeam™ Home  Ask the Team  Mailing Lists  Advertising Info  Blogs  Black Box Testing  Vulnerability Assessment  Vulnerability Scanner SecuriTeam™ in Your Inbox   E-mail this article to a friend New vulnerability? New tool? Tell us	Microsoft Excel BIFF File Format Cell Record Parsing Memory Corruption Vulnerability 12 Mar. 2008    Summary A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office. Exploitation requires that the attacker coerce the target into opening a malicious .XLS file.   Credit: The information has been provided by The Zero Day Initiative (ZDI). The original article can be found at: http://www.zerodayinitiative.com/advisories/ZDI-08-008/    Details Audit your web server for security holes - see what the hackers see. Sign up for a scan today - risk free! The specific flaw exists within the parsing of malformed cell comments. When Excel encounters a malformed record it attempts to rebuild the broken meta-data. A flaw in this rebuilding process allows the user to specify critical data offsets eventually leading to code execution under the logged in users credentials. Vendor Response: Microsoft has issued an update to correct this vulnerability. More details can be found at: http://www.microsoft.com/technet/security/Bulletin/MS08-016.mspx CVE Information: CVE-2008-0113 Disclosure Timeline: 2007-05-22 - Vulnerability reported to vendor 2008-03-11 - Coordinated public release of advisory  Comments:  Add new comment:  Subject:  Name/Nick/Email:          Chars Left:	All Sections Security News Unix focus Exploits Tools Windows focus Security Reviews  Related Articles DriveCrypt Security Model Bypass and Incorrect BIOS API Usage Windows Media Services (nskey.dll) CallHTMLHelp Buffer Overflow Trend Micro Products Web Management Authentication Bypass Anzio Web Print Object Buffer Overflow Internet Explorer Zone Elevation Restrictions Bypass and Security Zone Restrictions Bypass (MS08-043) Microsoft Windows Messenger Illegal Access Vulnerability (MS08-050) MicroWorld MailScan - Multiple Vulnerabilities within Admin-Webinterface Symantec Veritas Storage Foundation Scheduler Service NULL Session Authentication Bypass Vulnerability Vulnerability in Cisco WebEx Meeting Manager ActiveX Control Cumulative Security Update for Internet Explorer (MS08-045) Vulnerability in Microsoft Word Allows Code Execution (MS08-042) Vulnerability in the Snapshot Viewer ActiveX Control for Microsoft Access Allows Code Execution (MS08-041) PartyGaming PartyPoker Malicious Update Vulnerability Microsoft Office BMP Input Filter Heap Overflow Vulnerability (MS08-044) CA HIPS KmxFw.sys Kernel Memory Corruption  Featured Articles Internet Explorer Zone Elevation Restrictions Bypass and Security Zone Restrictions Bypass (MS08-043) MicroWorld MailScan - Multiple Vulnerabilities within Admin-Webinterface Sun xVM VirtualBox Privilege Escalation Vulnerability Vulnerabilities in DNS Allows Spoofing (MS08-037) Vulnerabilities in Microsoft SQL Server Allows Elevation of Privilege (MS08-040) Multiple Cisco Products Vulnerable to DNS Cache Poisoning Attacks libpoppler Uninitialized Pointer
	Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus - Blogs - CVEs

Copyright © 1998-2008 Beyond Security® All rights reserved.
Terms of Use Site Privacy Statement.
SecuriTeam™ is a trademark of Beyond Security®