HTTP: Microsoft Excel Column Record Handling Memory Corruption
This signature detects attempts to exploit a known vulnerability against Microsoft Office Excel. If a client opens a maliciously crafted XLS document, arbitrary code execution is possible.
Extended Description
Microsoft Excel is prone to a remote code-execution vulnerability. An attacker could exploit this issue to execute arbitrary code with the privileges of the user running the application. The attacker could leverage the issue to compromise affected computers.
Affected Products
Microsoft office_xp
References
BugTraq: 21925
CVE: CVE-2007-0030
URL: http://www.microsoft.com/technet/security/bulletin/ms07-002.mspx
Short Name
HTTP:STC:DL:XLS-COLUMN-RECORD
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2007-0030 Column Corruption Excel Handling Memory Microsoft Record bid:21925
Release Date
09/29/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Microsoft
CVSS Score
9.3