Microsoft Excel TXO and OBJ record parsing memory corruption

2008-12-18T00:00:00
ID SAINT:D72976F3A107071A3052E7CA69CD410A
Type saint
Reporter SAINT Corporation
Modified 2008-12-18T00:00:00

Description

Added: 12/18/2008
CVE: CVE-2008-4265
BID: 32618
OSVDB: 50556

Background

Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms.

Problem

A memory corruption vulnerability allows command execution when a user opens an Excel spreadsheet containing specially crafted TXO and OBJ records.

Resolution

Apply the update referenced in Microsoft Security Bulletin 08-074.

References

<http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=763>

Limitations

Exploit works on Microsoft Excel 2000 SP3 and requires a user to open the exploit file.

After opening the exploit file, there may be a delay before the connection is established.

Platforms

Windows 2000
Windows XP