| VID |
26373 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The hotfix (956416) for 'Remote Code Execution Vulnerabilities in Microsoft Excel' has not been applied. This update resolves several newly discovered, privately reported and public vulnerabilities.
The remote host is running a version of Microsoft Excel which is subject to various flaws which may allow arbitrary code to be run.
An attacker may use this to execute arbitrary code on this host.
To succeed, the attacker would have to send a rogue file to a user of the remote computer and have it open it with Microsoft Excel.
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://www.microsoft.com/technet/security/bulletin/ms08-057.mspx
* Platforms Affected:
Excel 2000 Service Pack 3 in Microsoft Office 2000 Service Pack 3
Excel 2002 Service Pack 3 in Microsoft Office XP Service Pack 3
Excel 2003 Service Pack 2 and Service Pack 3 in Microsoft Office 2003 Service Pack 2
Excel 2007 in 2007 Microsoft Office System
Excel 2007 Service Pack 1 in 2007 Microsoft Office System Service Pack 1
Microsoft Office Excel Viewer 2003
Microsoft Office Excel Viewer 2003 Service Pack 3
Microsoft Office Excel Viewer
Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats
Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Service Pack 1
Microsoft Office SharePoint Server 2007*
Microsoft Office SharePoint Server 2007 Service Pack 1*
Microsoft Office SharePoint Server 2007 x64 Edition*
Microsoft Office SharePoint Server 2007 x64 Edition Service Pack 1*
Microsoft Office 2004 for Mac
Microsoft Office 2008 for Mac
Open XML File Format Converter for Mac |
| Recommendation |
Apply the appropriate patch (956416) for your system, as listed in Microsoft Security Bulletin MS08-057 at http://www.microsoft.com/korea/technet/security/bulletin/ms08-057.mspx |
| Related URL |
CVE-2008-3003,CVE-2008-3004,CVE-2008-3005,CVE-2008-3006 (CVE) |
| Related URL |
30638,30639,30640,30641 (SecurityFocus) |
| Related URL |
44088,44089,44090,44091,44092 (ISS) |
|
