Hillstone Networks

RULE（RULE ID：305237）

Rule General Information


Release Date:		2014-12-19

Rule Name:		Microsoft Excel Remote Code Execution Vulnerability (CVE-2006-3059)

Severity:

CVE ID:

Rule Protection Details


Description:		Microsoft Excel contains a vulnerability that could be exploited when Excel opens a specially crafted document. It is possible that the vulnerability can be exploited by opening a Microsoft Office document that includes an embedded Excel spreadsheet.Based on limited testing, Excel 2003, Excel Viewer 2003, Excel XP (2002), Excel 2000,Excel 97, Excel Viewer 97, and Excel 2004 for Mac OS appear to contain a buffer overflow vulnerability. Other versions of Excel may also be affected.Microsoft Security Advisory (921365) indicates that the vulnerability is related to Excel's repair mode.

Impact:		An attacker can execute arbitrary code via a successful exploit in the context of the vulnerable software.

Affected OS:		Windows

Reference:		MicrosoftSecurityBulletin:ms06-037 SecurityFocusBID:18422

Solutions

Microsoft has released a patch MS06-037 to eliminate the vulnerability. The patch can be downloaded at http://www.microsoft.com/technet/security/bulletin/ms06-037.mspx