Security Incidents: Re: Excel zero day in the wild

From: Juha-Matti Laurio <juha-matti.laurio_at_netti.fi>
Date: Sat, 17 Jun 2006 04:35:11 +0300 (EEST)

Microsoft has posted new information regarding to upcoming security advisory to provide some workaround methods.
New MSRC Blog entry is located at
http://blogs.technet.com/msrc/archive/2006/06/17/436860.aspx

- Juha-Matti

> There has been a report of a targeted attack leveraging a previously
> unknown vulnerability in Microsoft Excel. The vulnerability is triggered
> when a user opens a malicious xls file. Further information regarding this
> incident is available from the following sources.
>
> Microsoft Excel Unspecified Remote Code Execution Vulnerability
> http://www.securityfocus.com/bid/18422
>
> Trojan.Mdropper.J
> http://securityresponse.symantec.com/avcenter/venc/data/trojan.mdropper.j.html
>
> Downloader.Booli.A
> http://securityresponse.symantec.com/avcenter/venc/data/downloader.booli.a.html
>
> Reports of a new vulnerability in Microsoft Excel
> http://blogs.technet.com/msrc/archive/2006/06/16/436174.aspx
>
> -Josh
>

------------------------------------------------------------------------------
This List Sponsored by: Black Hat

Attend the Black Hat Briefings & Training USA, July 29. August 3 in Las Vegas.
World renowned security experts reveal tomorrow.s threats today. Free of
vendor pitches, the Briefings are designed to be pragmatic regardless of your
security environment. Featuring 36 hands-on training courses and 10 conference
tracks, networking opportunities with over 2,500 delegates from 40+ nations.

http://www.blackhat.com
------------------------------------------------------------------------------
Received on Jun 16 2006