Softpedia
 
HomepageWindowsGamesDriversMacLinuxScripts buttonMobileHandheldNews

NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
MEET THE EDITORS >>
Home > News > Security

October 1st, 2010, 12:37 GMT · By

Exploit Code Released for Patched Excel Remote Code Execution Vulnerability

SHARE:

Adjust text size:


Exploit code available for CVE-2010-1245
Enlarge picture
Security researchers have released proof-of-concept exploit code for a remote code execution vulnerability in Office for Windows and Mac, that was patched earlier this month.

Identified as CVE-2010-1245, the flaw is described as an Microsoft Excel SxView record parsing memory corruption.

It affects Office Excel 2002, Microsoft Office Excel 2003, Microsoft Office Excel 2007, Microsoft Office 2004 for Mac, and Microsoft Office 2008 for Mac; Open XML File Format Converter for Mac; and all supported versions of Microsoft Office Excel Viewer and Microsoft Office Compatibility Pack.

The vulnerability was patched back in June along with similar arbitrary code execution Excel bugs and was covered in the MS10-038 security bulletin.

"An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights," Microsoft warns.

A proof-of-concept exploit consisting of a malformed Excel document and created by a group called Abyssec Security Research and has been posted on the Exploit Database (EDB) website recently.

A complete binary analysis, which enables others to easily create their own exploits has also been published as part of a project called Month of Abysssec Undisclosed Bugs (MOAUB).

This release makes it likelier for ill-intentioned attackers to target the vulnerability in a similar way in which Adobe Reader flaws are targeted via malicious PDF documents.

Organizations are at most risk of such targeted attacks, because sharing Excel files is very common in business environments, and companies tend to fall behind on patches.

Windows and Mac users, who have any of the affected products installed and haven't yet deployed the patch for this flaw, are now strongly encouraged to do so.

Nicolas Joly of VUPEN's vulnerability research team is credited with discovering and reporting this vulnerability to Microsoft.

TELL US WHAT YOU THINK:

1,129 hits · Link to this article · Print article · Send to friend · Subscribe to news

MUST-READ RELATED ARTICLES:


Microsoft Fixes Actively Exploited ASP.NET Flaw
Microsoft Reassesses the Exploitability of Two Vulnerabilities
Microsoft Patches Eleven Vulnerabilities in Windows, IIS and Office
Adobe Patches Zero-Day Flash Player Vulnerability

READER COMMENTS:



No user comments yet.
Be the first to express your opinion!
Copyright © 2001-2012 Softpedia. Contact/Tip us at

WindowsGamesDriversMacLinuxScriptsMobileHandheldNews

SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   UPDATE YOUR SOFTWARE   |   ROMANIAN FORUM
© 2001 - 2012 Softpedia. All rights reserved.
Softpedia® and the Softpedia® logo are
registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use