Overview
Microsoft Excel contains a memory corruption vulnerability. This vulnerability may allow a remote attacker to execute arbitrary code on a vulnerable system.
Description
Microsoft Excel fails to properly validate graphics in Excel data files. When a file with a malformed graphic file is opened in Excel, system memory can be corrupted in a way that may allow an attacker to execute arbitrary code. More information is available in MS06-012. |
Impact
A remote unauthenticated attacker may be able to execute arbitrary code. |
Solution
Apply a patch from your vendor |
|
Vendor Information
CVSS Metrics
Group | Score | Vector |
---|---|---|
Base | ||
Temporal | ||
Environmental |
References
Acknowledgements
This issue was reported in Microsoft Security Bulletin MS06-012.
This document was written by Jeff Gennari.
Other Information
CVE IDs: | CVE-2006-0030 |
Severity Metric: | 30.38 |
Date Public: | 2006-03-14 |
Date First Published: | 2006-03-14 |
Date Last Updated: | 2006-03-14 19:59 UTC |
Document Revision: | 16 |