Home > Threat descriptions >

CVE-2006-3059

Classification

Category: Malware

Type: Exploit

Aliases: No results found, Trojan-Dropper.MSExcel.CVE-2006-3059.a, Trojan-Dropper.MSExcel.Tored.e

Summary


Microsoft Excel has a vulnerability that allows exection of arbitary code from a specially crafted Excel workbook.

Removal


Automatic action

Based on the settings of your F-Secure security product, it will either automatically delete, quarantine or rename the detected program or file, or ask you for a desired action.

Knowledge Base

Find the latest advice in our Community Knowledge Base.

About the product

See the manual for your F-Secure product on the Help Center.

Contact Support

Chat with or call an expert for help.

Submit a sample

Submit a file or URL for further analysis.

Technical Details


Microsoft Excel contains a vulnerability that allows for the execution of arbitrary code in the context of the local user. The exploit occurs when Excel attempts to open and then recover what it thinks is a damaged workbook using the repair mode.

Microsoft has released an advisory about this issue, and it is available at:

A patch for this vulnerability was released on July 11, 2006. For more details, please see: