Months-old Excel exploit goes public

With the attack now widely available, patch ASAP, urges Symantec

Attack code that exploits a bug in Microsoft Excel went public last week, a security researcher said, prompting him to urge users to immediately apply a March 11 patch.

The exploit, which was posted to the milw0rm.com site last Friday, is the first made public for any of the seven vulnerabilities that were patched by Microsoft several days earlier in the security update tagged as MS08-014. That bulletin fixed multiple flaws in Excel 2000, 2002, 2003 and 2007 on Windows, and Excel 2004 and Excel 2008 on the Mac.

"The vulnerability that this exploit is designed to leverage was originally exploited in the wild on January 15, 2008," said Symantec security analyst Aaron Adams in an alert to customers of the company's DeepSight threat notification service. "We believe it leverages CVE-2008-0081 ... [and] involves the manipulation of an uninitialized stack variable by specially crafting an Excel file such that stack data will be pre-populated with user-supplied data and therefore able to influence the value of the uninitialized variable."

Microsoft labeled CVE-2008-0081 "critical" on Excel 2000, and "important" on Excel 2002 and 2003.

Microsoft first acknowledged the Excel bug more than two months ago, when it confirmed that hackers were attacking Windows machines via Excel. At the time, the company's security team characterized the attacks as "targeted and not widespread."

Once the attack code was publicly posted on Friday, Adams advised users to apply MS08-014 immediately. "This should be considered a high priority in light of the availability of exploit code," he said. "Additionally, users should be advised to carry out extreme caution when handling Excel files received online. If possible, Excel files should be filtered at the e-mail gateway until the updates can be applied."

The MS08-014 update was the same one that Microsoft had to re-release last week after it discovered one of the Excel fixes had produced a regression error that generated wrong results in some calculations.

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.
Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.
Gregg Keizer

Gregg Keizer

Computerworld
Show Comments

Brand Post

Bitdefender 2019

Taking cybersecurity to the highest level and order now for a special discount on the world’s most awarded and trusted cybersecurity. Be aware without a care!

Most Popular Reviews

Latest Articles

Resources

PCW Evaluation Team

Luke Hill

MSI GT75 TITAN

I need power and lots of it. As a Front End Web developer anything less just won’t cut it which is why the MSI GT75 is an outstanding laptop for me. It’s a sleek and futuristic looking, high quality, beast that has a touch of sci-fi flare about it.

Emily Tyson

MSI GE63 Raider

If you’re looking to invest in your next work horse laptop for work or home use, you can’t go wrong with the MSI GE63.

Laura Johnston

MSI GS65 Stealth Thin

If you can afford the price tag, it is well worth the money. It out performs any other laptop I have tried for gaming, and the transportable design and incredible display also make it ideal for work.

Andrew Teoh

Brother MFC-L9570CDW Multifunction Printer

Touch screen visibility and operation was great and easy to navigate. Each menu and sub-menu was in an understandable order and category

Louise Coady

Brother MFC-L9570CDW Multifunction Printer

The printer was convenient, produced clear and vibrant images and was very easy to use

Edwina Hargreaves

WD My Cloud Home

I would recommend this device for families and small businesses who want one safe place to store all their important digital content and a way to easily share it with friends, family, business partners, or customers.

Featured Content

Product Launch Showcase

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?