Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:23335
HistoryMar 10, 2010 - 12:00 a.m.

VUPEN Security Research - Microsoft Office Excel Record Processing Code Execution Vulnerability

2010-03-1000:00:00
vulners.com
20
JSON

VUPEN Security Research - Microsoft Office Excel Record Processing Code
Execution Vulnerability

http://www.vupen.com/english/research.php

I. BACKGROUND

"Microsoft Office Excel is a powerful tool you can use to create and
format spreadsheets, and analyze and share information to make more
informed decisions. With the Microsoft Office Fluent user interface,
rich data visualization, and PivotTable views, professional-looking
charts are easier to create and use." (microsoft.com)

II. DESCRIPTION

VUPEN Vulnerability Research Team discovered a critical vulnerability
affecting Microsoft Office Excel.

The flaw is caused by a memory corruption error when processing
malformed "EntExU2" records in an Excel document, which could be
exploited by attackers to execute arbitrary code.

III. AFFECTED PRODUCTS

Microsoft Office Excel 2002 Service Pack 3
Microsoft Office XP Service Pack 3

IV. Exploits - PoCs & Binary Analysis

In-depth binary analysis of the vulnerability and a code exeution
exploit have been released by VUPEN through the VUPEN Binary Analysis
& Exploits Service :

http://www.vupen.com/exploits

V. SOLUTION

Apply security update (MS10-017):
http://www.microsoft.com/technet/security/bulletin/ms10-017.mspx

VI. CREDIT

The vulnerability was discovered by Nicolas JOLY of VUPEN Security

VII. ABOUT VUPEN Security

VUPEN is a leading IT security research company providing vulnerability
management and security intelligence solutions which enable enterprises
and institutions to eliminate vulnerabilities before they can be
exploited, ensure security policy compliance and meaningfully measure
and manage risks.

VUPEN also provides in-depth binary analysis of vulnerabilities and
commercial-grade exploit codes to help security vendors, governments,
and corporations to evaluate and qualify risks, and protect their
infrastructures and assets.

  • VUPEN Vulnerability Notification Service:

http://www.vupen.com/english/services

  • VUPEN Binary Analysis & Exploits Service :

http://www.vupen.com/exploits

VIII. REFERENCES

http://www.vupen.com/english/advisories/2010/0566
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0257
http://www.microsoft.com/technet/security/bulletin/ms10-017.mspx

IX. DISCLOSURE TIMELINE

2009-07-17 - Vendor notified
2009-07-19 - Vendor response
2010-01-26 - Status update received
2010-03-03 - Status update received
2010-03-09 - Coordinated public Disclosure

Related

checkpoint_advisories 2
prion 1
seebug 1
cve 1
securityvulns 2
openvas 2
nessus 1
checkpoint_advisories
checkpoint_advisories
Microsoft Excel EntExU2 Record Memory Corruption (MS10-017; CVE-2010-0257)
2010-03-09 00:00:00
Microsoft Excel EntExU2 Record Memory Corruption - Ver2 (CVE-2010-0257)
2014-04-16 00:00:00
prion
prion
Memory corruption
2010-03-10 22:30:00
seebug
seebug
Microsoft Excel EntExU2记录内存破坏漏洞(MS10-017)
2010-03-10 00:00:00
cve
cve
CVE-2010-0257
2010-03-10 22:30:00
securityvulns
securityvulns
Microsoft Excel multiple security vulnerabilities
2010-03-11 00:00:00
Microsoft Security Bulletin MS10-017 - Important Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (980150)
2010-03-10 00:00:00
openvas
openvas
Microsoft Office Excel Multiple Vulnerabilities (980150)
2010-03-10 00:00:00
Microsoft Office Excel Multiple Vulnerabilities (980150)
2010-03-10 00:00:00
nessus
nessus
MS10-017: Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (980150)
2010-03-09 00:00:00
JSON
Related for SECURITYVULNS:DOC:23335
checkpoint_advisories2prion1seebug1cve1securityvulns2openvas2nessus1