Test ID:	1.3.6.1.4.1.25623.1.0.801595
Category:	Windows
Title:	Microsoft Office Excel Axis and Art Object Parsing Remote Code Execution Vulnerabilities
Summary:	Check for the version of Microsoft Excel
Description:	Overview: This host is installed with Microsoft Office Excel and is prone to multiple remote code execution vulnerabilities. Vulnerability Insight: The flaws are due to: - An error in the usage of a specific field used for incrementing an array index. The application will copy the contents of the specified element into a statically sized buffer on the stack. - An error in parsing Office Art record, when parsing an office art object record, if an error occurs, the application will add a stray reference to an element which is part of a linked list. When receiving a window message, the application will proceed to navigate this linked list. This will access a method from the malformed object which can lead to code execution under the context of the application. Impact: Successful exploitation will allow attacker to execute arbitrary code, can cause memory corruption and other attacks in the context of the application through crafted Excel file. Impact Level: System Affected Software/OS: Microsoft Office Excel 2010 Fix: No solution or patch is available as of 17th February, 2011. Information regarding this issue will be updated once the solution details are available. For updates refer to http://office.microsoft.com/en-us/excel/ References: http://seclists.org/bugtraq/2011/Feb/86 http://www.zerodayinitiative.com/advisories/ZDI-11-042/ http://www.zerodayinitiative.com/advisories/ZDI-11-041/ http://permalink.gmane.org/gmane.comp.security.full-disclosure/77802
Cross-Ref:	BugTraq ID: 46225 Common Vulnerability Exposure (CVE) ID: CVE-2011-0978 http://dvlabs.tippingpoint.com/blog/2011/02/07/zdi-disclosure-microsoft http://zerodayinitiative.com/advisories/ZDI-11-042/ Microsoft Security Bulletin: MS11-021 http://www.microsoft.com/technet/security/Bulletin/MS11-021.mspx Cert/CC Advisory: TA11-102A http://www.us-cert.gov/cas/techalerts/TA11-102A.html http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:12439 http://www.securitytracker.com/id?1025337 http://secunia.com/advisories/43232 http://secunia.com/advisories/39122 http://securityreason.com/securityalert/8231 http://www.vupen.com/english/advisories/2011/0940 Common Vulnerability Exposure (CVE) ID: CVE-2011-0979 http://zerodayinitiative.com/advisories/ZDI-11-041/ http://osvdb.org/70904 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:12595 http://secunia.com/advisories/43231
Copyright	Copyright (C) 2011 Greenbone Networks GmbH

This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: