Microsoft Office Excel: RealTimeData Array Indexing Vulnerability

Users of Microsoft Office Excel please be advised of a RealTimeData Array Indexing vulnerability that has been identified.

To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (http://criticalwatch.com/support/security-advisories.aspx)

Amplify’d from www.criticalwatch.com

CVE-2010-3240: Microsoft Office Excel RealTimeData Array Indexing Vulnerability

. AFFECTED PRODUCTS --------------------------- Microsoft Office 2007 Service Pack 2 Microsoft Office XP Service Pack 3 Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Service Pack 2 Microsoft Excel Viewer Service Pack 2

. DESCRIPTION --------------------- VUPEN Vulnerability Research Team discovered a critical vulnerability in Microsoft Office Excel. The vulnerability is caused by an array indexing error when processing RealTimeData records in an Excel file, which could be exploited by remote attackers to execute arbitrary code by tricking a user into opening a specially crafted Excel document. Read more at www.criticalwatch.com

 

See this Amp at http://bit.ly/9q2ioZ