|Title:||Microsoft Excel 2007 Office Drawing Layer Remote Code Execution Vulnerability|
|Summary:||Check for the version of Microsoft Excel|
Overview: This host is installed with Microsoft Office Excel and is prone to
remote code execution vulnerability.
The flaw exists in office drawing file format. When parsing shape data within
a particular container, the application fails to remove the reference to an
object when an error occurs.
Successful exploitation will allow attacker to execute arbitrary codes,
cause memory corruption and other attacks in the context of the application
through crafted Excel file.
Impact Level: System
Microsoft Office Excel 2007
Fix: No solution or patch is available as of 17th February, 2011. Information
regarding this issue will be updated once the solution details are available.
For updates refer to http://office.microsoft.com/en-us/excel/
BugTraq ID: 46225|
Common Vulnerability Exposure (CVE) ID: CVE-2011-0977
Microsoft Security Bulletin: MS11-023
Cert/CC Advisory: TA11-102A
|Copyright||Copyright (C) 2011 Greenbone Networks GmbH|
|This is only one of 43391 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.