HTTP: Microsoft Excel Malformed IMDATA Record Buffer Overflow
This signature detects attempts to exploit a known vulnerability against Microsoft Office Excel. Versions prior to and including Microsoft Office XP Service Pack 3 are vulnerable. Attackers can cause the execution of arbitrary code by supplying the victim with a maliciously crafted document.
Extended Description
Microsoft Excel is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code with the privileges of the user running the application, which can result in the compromise of affected computers.
Affected Products
Microsoft office_xp
Short Name
HTTP:STC:DL:XLS-IMDATA
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Buffer CVE-2007-0027 Excel IMDATA Malformed Microsoft Overflow Record
Release Date
09/28/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Microsoft
CVSS Score
9.3