Intrusion Prevention

MS.Excel.BOF.Record.Handling.Memory.Corruption

Description

This indicates an attempt to exploit a Memory Corruption vulnerability in Microsoft Excel.
The vulnerability may allow user assisted remote attackers to execute arbitrary code via a crafted Excel file with an incorrect "BIFF" version value.

Affected Products

Microsoft Excel 2000 SP3
Microsoft Excel 2002 SP3
Microsoft Excel 2003 SP2
Microsoft Excel 2003 Viewer
Microsoft Office Excel 2007

Impact

System compromise: privilege escalation, remote code execution.

Recommended Actions

Microsoft has released a fixes to address this issue.
http://www.microsoft.com/technet/security/bulletin/ms07-036.mspx

CVE References

CVE-2007-1756