=====================================================================
                                   CERT-Renater

                        Note d'Information No. 2008/VULN574
_____________________________________________________________________

DATE                      : 10/12/2008

HARDWARE PLATFORM(S)      : /

OPERATING SYSTEM(S)       : Systems running Microsoft Office Excel.

======================================================================
KB959070
http://www.microsoft.com/technet/security/bulletin/ms08-074.mspx
______________________________________________________________________

Microsoft Security Bulletin MS08-074 - Critical
Vulnerabilities in Microsoft Office Excel Could Allow Remote Code
Execution (959070)

   Published: December 9, 2008

   Version: 1.0

General Information

Executive Summary

   This security update resolves three privately reported vulnerabilities in
   Microsoft Office Excel that could allow remote code execution if a user
   opens a specially crafted Excel file. An attacker who successfully exploited
   these vulnerabilities could take complete control of an affected system. An
   attacker could then install programs; view, change, or delete data; or
   create new accounts with full user rights. Users whose accounts are
   configured to have fewer user rights on the system could be less impacted
   than users who operate with administrative user rights.

   This security update is rated Critical for all supported editions of
   Microsoft Office Excel 2000. For all supported editions of Microsoft Office
   Excel 2002, Microsoft Office Excel 2003, Microsoft Office Excel Viewer 2003,
   Microsoft Office Excel 2007, Microsoft Office Compatibility Pack, Microsoft
   Office Excel Viewer, Microsoft Office 2004 for Mac, Microsoft Office 2008
   for Mac, and Open XML File Format Converter for Mac, this security update is
   rated Important. For more information, see the subsection, Affected and
   Non-Affected Software, in this section.

   This security update addresses these vulnerabilities by modifying the way
   that Microsoft Office Excel opens Excel files. For more information about
   the vulnerability, see the Frequently Asked Questions (FAQ) subsection for
   the specific vulnerability entry under the next section, Vulnerability
   Information.

   Recommendation. Microsoft recommends that customers apply the update
   immediately.

   Known Issues. Microsoft Knowledge Base Article 959070 documents the
   currently known issues that customers may experience when installing this
   security update. The article also documents recommended solutions for these
   issues.

Affected Software

   Microsoft Office 2000 Service Pack 3
	
   Microsoft Office Excel 2000 Service Pack 3

   Microsoft Office XP Service Pack 3
	
   Microsoft Office Excel 2002 Service Pack 3

   Microsoft Office 2003 Service Pack 3

   Microsoft Office Excel 2003 Service Pack 3

   2007 Microsoft Office System
	
   Microsoft Office Excel 2007

   2007 Microsoft Office System Service Pack 1
	
   Microsoft Office Excel 2007 Service Pack 1 	 	 	

   Microsoft Office Excel Viewer 2003

   Microsoft Office Excel Viewer 2003 Service Pack 3

   Microsoft Office Excel Viewer

   Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint
   2007 File Formats

   Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint
   2007 File Formats Service Pack 1

   Microsoft Office for Mac	 	 	 	

   Microsoft Office 2004 for Mac

   Microsoft Office 2008 for Mac

   Open XML File Format Converter for Mac

Vulnerability Information

File Format Parsing Vulnerability - CVE-2008-4265

   A remote code execution vulnerability exists in Microsoft Office Excel
   as a result of memory corruption when loading Excel records. The
   vulnerability could allow remote code execution if a user opens a
   specially crafted Excel file that includes a malformed object. An
   attacker who successfully exploited this vulnerability could take
   complete control of an affected system. An attacker could then install
   programs; view, change, or delete data; or create new accounts with full
   user rights.

File Format Parsing Vulnerability - CVE-2008-4264

   A remote code execution vulnerability exists in Microsoft Office Excel
   as a result of pointer corruption when loading Excel formulas. The
   vulnerability could allow remote code execution if a user opens a
   specially crafted Excel file that includes a malformed formula. An
   attacker who successfully exploited this vulnerability could take
   complete control of an affected system. An attacker could then install
   programs; view, change, or delete data; or create new accounts with full
   user rights.

Excel Global Array Memory Corruption Vulnerability - CVE-2008-4266

   A remote code execution vulnerability exists in Microsoft Office Excel
   as a result of stack corruption when loading Excel records. The
   vulnerability could allow remote code execution if a user opens a
   specially crafted Excel file that includes a malformed object. An
   attacker who successfully exploited this vulnerability could take
   complete control of an affected system. An attacker could then install
   programs; view, change, or delete data; or create new accounts with full
   user rights.

======================================================================

          =========================================================
          Les serveurs de référence du CERT-Renater
          http://www.urec.fr/securite
          http://www.cru.fr/securite
          http://www.renater.fr
          =========================================================
          + CERT-RENATER          | tel : 01-53-94-20-44          +
          + 151 bd de l'Hopital   | fax : 01-53-94-20-41          +
          + 75013 Paris           | email: certsvp@renater.fr     +
          =========================================================