Fortinet Discovers Memory Corruption In Microsoft Excel Excel.exe Module
Fortinet's FortiGuard Labs has discovered memory corruption vulnerability in Microsoft Excel Excel.exe Module.
SolutionsFortiGuard Labs released the following FortiGate IPS signature which covers this specific vulnerability:
Released Jul 16, 2009
Use the solution provided by Microsoft.
Additional InformationThe vulnerability lies in "excel.exe", which is used when processing an Excel file. A maliciously crafted document may contain a malformed 1) BRAI record (0x1051) or 2) Object record (0x5d) or 3) Formula record (0x06) that when processed, will result in memory corruption and allow a remote attacker to arbitrarily execute code on the victims machine.
Bing Liu of Fortinet's FortiGuard Global Security Research Team