MS.Excel.File.RtAFDesc.Record.Code

Name	MS.Excel.File.RtAFDesc.Record.Code.Execution
Release Date	Aug 06, 2009
Severity	Critical
Impact	System compromise
Description	This indicates an attack attempt against a remote code-execution vulnerability in Microsoft Excel. The vulnerability is caused by an error when the vulnerable software handles a specially crafted Excel file. It allows a remote attacker to execute arbitrary code.
Affected Products	Microsoft Office Excel 2003 SP2 Microsoft Office Excel Viewer 2003 Microsoft Office Excel 2002 Microsoft Office Excel 2000 Microsoft Excel 2004 for Mac
Recommended Actions	Apply the patch available at the vendor's web site: http://www.microsoft.com/technet/security/bulletin/ms08-014.mspx
Common Vulnerabilities and Exposures (CVE)	http://cve.mitre.org/cgi-bin/cvename.cgi?name=2008-0081
Microsoft Bulletin ID	MS08-014 http://www.microsoft.com/technet/security/Bulletin/MS08-014.mspx
Reference/s	http://www.securityfocus.com/bid/27305 (BugTraq) http://www.vupen.com/english/advisories/2008/0146 (FrSIRT)

Reference: VID-17587