Security Incidents mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Excel zero day in the wild

From: Juha-Matti Laurio <juha-matti.laurio () netti fi>
Date: Sat, 17 Jun 2006 04:35:11 +0300 (EEST)
Microsoft has posted new information regarding to upcoming security advisory to provide some workaround methods.
New MSRC Blog entry is located at
http://blogs.technet.com/msrc/archive/2006/06/17/436860.aspx
- Juha-Matti
There has been a report of a targeted attack leveraging a previously unknown vulnerability in Microsoft Excel. The vulnerability is triggered when a user opens a malicious xls file. Further information regarding this incident is available from the following sources. 

Microsoft Excel Unspecified Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/18422

Trojan.Mdropper.J
http://securityresponse.symantec.com/avcenter/venc/data/trojan.mdropper.j.html

Downloader.Booli.A
http://securityresponse.symantec.com/avcenter/venc/data/downloader.booli.a.html

Reports of a new vulnerability in Microsoft Excel
http://blogs.technet.com/msrc/archive/2006/06/16/436174.aspx

-Josh




------------------------------------------------------------------------------
This List Sponsored by: Black Hat
Attend the Black Hat Briefings & Training USA, July 29. August 3 in Las Vegas. World renowned security experts reveal tomorrow.s threats today. Free of vendor pitches, the Briefings are designed to be pragmatic regardless of your security environment. Featuring 36 hands-on training courses and 10 conference tracks, networking opportunities with over 2,500 delegates from 40+ nations. 
http://www.blackhat.com
------------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: