INFO[rmation fo]RENSICS

IMPORTANT INFORMATION REGARDING:Microsoft Excel Vulnerability.

OVERVIEW:
It has been reported that a vulnerability existing in Microsoft Excel
is being exploited in the wild.  Exploitation of the vulnerability
involves interaction with Excel spreadsheets specially crafted by
malicious users.  Successful exploitation may allow code execution at
the permissions level of the logged in user, whereas unsuccessful
exploitation may result in a DoS condition.

AFFECTED SOFTWARE:
**UPDATE** MS has confirmed the following versions as vulnerable:

MITIGATION:
No patches or workarounds have been issued for this vulnerability.
Alternative methods of mitigation can include educating end users on
the hazards of interacting with Excel files (or any files) received
from unknown sources.  If Excel files are not a part of day to day
business practices, it may also be possible to block incoming Excel
files at an appropriate firewall and/or mail server. Ensuring user
permissions are set appropriately may also be beneficial.  In the event
of successful exploitation, a user with limited permissions will suffer
less impact than accounts working with full administrator priveledges.

RECOMMENDATION:
Due to the lack of a software fix to this vulnerability, we recommend
alerting end users about the presence of this vulnerability, and taking
any other mitigation steps that are appropriate for your work
environment. We will be keeping a close eye on this situation, and will
send notification once patches/workarounds are available.

REPORTING AGENCIES:

Microsoft:

http://www.microsoft.com/technet/security/advisory/968272.mspx

Information Week:

http://www.informationweek.com/news/security/vulnerabilities/showArticle.jhtml?articleID=214502844

This entry was posted on Tuesday, February 24th, 2009 at 6:33 pm and is filed under Inforensics News. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.