December 1, 2006 12:47 PM PST

Buffer overflow in Microsoft Works 8

Posted by Robert Vamosi Post a comment

Vulnerabilities specific to Microsoft Works Spreadsheet 8.0 allows remote attackers to create a denial of service (crash) via a specially crafted Excel file. There are two specific vulnerabilities, and each involve memory corruption and NULL pointer dereference errors when processing malformed WKS or XLR files. Successful execution, however, requires users to open a malicious file.

Additional Resources:

French Security Incident Response Team: ADV-2006-2813
National Institute of Standards and Technology: CVE-2006-3653 and CVE-2006-3654

Topics:: Productivity and business

Tags:: Office,; Works

Bookmark:: Digg; Del.icio.us; Reddit

Recent posts from Zero Days: Microsoft fixes nineteen flaws in seven patches; all are considered critical updates; Storm Worm strikes again; Windows dynamic DNS update mechanism; Windows Web Proxy Autodiscovery flaw; Windows animated cursor attack

TalkBack
No discussions exist yet.

Click here to be the first to post a comment on this blog

Article discussion: Buffer overflow in Microsoft Works 8

Post a comment

About Zero Days
Zero Days are security threats released before or concurrent with the public disclosure of software vulnerabilities. Our new blog will keep you ahead of the criminal hackers by informing you what you are up against.

Subscribe via RSS
Click this link to view as XML.