47408 : Microsoft Office Excel File FORMAT Record Array Index Handling Arbitrary Code Execution
Printer | http://osvdb.org/47408 | Email This | Edit Vulnerability

Views This Week	Views All Time	Added to OSVDB	Last Modified	Modified (since 2008)	Percent Complete
6	1170	almost 5 years ago	4 months ago	18 times	100%

Timeline

Disclosure Date
2008-08-13

Time to Vendor Response
1 days

Description

Microsoft Office Excel contains an array-indexing error that is triggered as FORMAT records are not properly validated. With a specially crafted Excel file, a context-dependent attacker can cause data to be written to an arbitrary memory location, allowing arbitrary code execution.

Classification

Location: Context Dependent
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Private, Exploit Commercial, Virus / Malware
Disclosure: Vendor Verified, Coordinated Disclosure

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Microsoft Corporation	Office 2008 for Mac	12.1.1
	Office Excel 2002	SP3
	Office XP	SP3
	Office 2000	SP3
	Office 2004 for Mac	11.5.0
	Office Excel 2000	SP3

References

Security Tracker: 1020671
CVE ID: 2008-3005 (see also: NVD)
Bugtraq ID: 30639
Secunia Advisory ID: 31454
Related OSVDB ID: 47407 47409 47410
Microsoft Knowledge Base Article: 954066
VUPEN Advisory: ADV-2008-2347 [ Link is 404 ]
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2008-08/0160.html
Other Advisory URL: http://contagiodump.blogspot.com/2009/12/dec-28-cve-2008-3005-excel-russia.html
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=741
http://www.verisigninc.com/en_US/products-and-services/network-intelligence-availability/idefense/public-vulnerability-reports/articles/index.xhtml?id=741
http://www.virustotal.com/file-scan/report.html?id=afe6b95ad95bc689c356f34ec8d9094c495e4af57c932ac413b65ef132063acc-1282650856
News Article: http://www.eweek.com/c/a/Security/Microsoft-Patch-Tuesday-Targets-26-Vulnerabilities/
Generic Exploit URL: http://www.saintcorporation.com/cgi-bin/exploit_info/excel_format_array_index
Microsoft Security Bulletin: MS08-043

Tools & Filters

	33872

Credit

Anonymous - iDefense Labs VCP

CVSSv2 Score

CVSSv2 Base Score = 9.3
Source: nvd.nist.gov | Generated: 2008-08-13 | Disagree?

Comments

Add Comment Hide Add Comment

No Comments.

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

Timeline

Description

Classification

Solution

Products

Microsoft Corporation

Office 2008 for Mac

Office Excel 2002

Office XP

Office 2000

Office 2004 for Mac

Office Excel 2000

References

Tools & Filters

Credit

CVSSv2 Score

Comments