Networksecurity.fi Weblog - Juha-Matti Laurio: Targeted attacks in the wild using MS Excel 0-day

kesäkuu 2009

ma	ti	ke	to	pe	la	su
1	2	3	4	5	6	7
8	9	10	11	12	13	14
15	16	17	18	19	20	21
22	23	24	25	26	27	28
29	30

16/01/2008

Targeted attacks in the wild using MS Excel 0-day

Microsoft has confirmed the existence of targeted attacks using 0-day type vulnerability in Microsoft Excel application.

The following product versions have been confirmed as affected in Security Advisory 947563:

Microsoft Office Excel 2003 SP2, Excel 2002, Excel 2000, Excel Viewer 2003 ,and Microsoft Excel 2004 for Mac.

SANS ISC has issued a warning here, Secunia has released 5/5 advisory here and SecurityFocus BID27305 link is here. The advisory from FrSIRT has the most highest severity level as well.

CVE identifier of the 'Header Information Handling issue' is CVE-2008-0081.

16/01/2008 klo 14:09 (kategoriassa | News in English ) | Pysyvä osoite

Viittaus

Viittausosoite tähän kirjoitukseen:
http://www.typepad.com/services/trackback/6a00d8341c7d5f53ef00e54ff4f7c48834

Listed below are links to weblogs that reference Targeted attacks in the wild using MS Excel 0-day:

Kommentit

You can follow this conversation by subscribing to the comment feed for this post.

Verify your Comment

Kommentin esikatselu

Kirjoittanut: |

This is only a preview. Your comment has not yet been posted.

Your comment could not be posted. Error type:

Your comment has been saved. Comments are moderated and will not appear until approved by the author. Post another comment

The letters and numbers you entered did not match the image. Please try again.

As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.

Having trouble reading this image? View an alternate.

Kommentoi

Comments are moderated, and will not appear until the author has approved them.

Networksecurity.fi Weblog - Juha-Matti Laurio

Tietoturvatutkimussivuston Networksecurity.fi blogi

Tietoa