Fortinet Discovers Microsoft Office Excel Memory Corruption Vulnerability
Fortinet's FortiGuard Labs has discovered memory corruption vulnerabilities in Microsoft Office Excel which allows a remote attacker to compromise a system through a malicious document.
SolutionsFortiGuard Labs released the following FortiGate IPS signature which covers this specific vulnerability:
Released Jun 09, 2009
Use the solution provided by Microsoft.
Additional InformationAll the three vulnerabilities lie in "excel.exe", which is used when processing an Excel file. A maliciously crafted document may contain a malformed 1) BRAI record (0x1051) or 2) Object record (0x5d) or 3) Formula record (0x06) that when processed, will result in memory corruption and allow a remote attacker to arbitrarily execute code on the victims machine.
Bing Liu of Fortinet's FortiGuard Global Security Research Team