HTTP: Microsoft Office Excel Featheader Record Memory Corruption
This signature detects attempts to exploit a known code execution vulnerability in Microsoft Office Excel products. It is due to the way that Microsoft Office Excel handles specially crafted Excel files. In a successful attack, the behavior of the target is dependent on the intention of the malicious code. In an unsuccessful attack, the vulnerable application terminates abnormally.
Extended Description
Microsoft Excel is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing victims into opening a specially crafted Excel ('.xls') file. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running the application.
Affected Products
Microsoft excel_2003
Short Name
HTTP:STC:DL:XLS-FEATHEADER
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2009-3129 Corruption Excel Featheader Memory Microsoft Office Record bid:36945
Release Date
10/14/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Microsoft
CVSS Score
9.3