Eng
  1. Skip to navigation
  2. Skip to content
  3. Skip to sidebar


Vulnerability protection

Microsoft Excel vulnerability could allow remote code execution


Report ID: MS201112010
Date Published: 14 December 2011

Criticality: Important
Compromise Type: remote-code-execution
Compromise From: remote


Affected Product/Component:

Microsoft Excel 2003
Microsoft Office 2004 for Mac




Summary

A vulnerability in Microsoft Excel could allow a remote attacker to execute code and take control of an affected system.



Detailed Description

Microsoft has issued a security update for Microsoft Excel to address a vulnerability caused by incorrect handling of objects in memory. Upon successful exploit, an attacker could run code in the context of a logged-on user. This vulnerability has been resolved through the update by correcting the way that Excel manages objects in memory. Users are recommended to install this latest update as a protection against potential exploits.

 



CVE Reference

CVE-2011-3403



Solution

Install the latest security patch for applicable system, available for download from (https://technet.microsoft.com/en-us/security/bulletin/ms11-096)




Online Virus Scanner

 
Run a quick online virus scan of your computer.