Gravité: : Medium
  Identifiant(s) CVE: : CVE-2006-1308
  Date du conseil: 21 juillet 2015

  Description

Unspecified vulnerability in Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted FNGROUPCOUNT value.

  Information Exposure Rating:

Apply associated Trend Micro DPI Rules.

  Solutions

  Trend Micro Deep Security DPI Rule Number: 1005921
  Trend Micro Deep Security DPI Rule Name: 1005921 - Microsoft Excel Malformed FNGROUPCOUNT Value Vulnerability (CVE-2006-1308)

  Affected software and version:

  • Microsoft Excel 2000
  • Microsoft Excel 2000 SP1
  • Microsoft Excel 2000 SP2
  • Microsoft Excel 2000 SP3
  • Microsoft Excel 2000 SR1
  • Microsoft Excel 2002
  • Microsoft Excel 2002 SP1
  • Microsoft Excel 2002 SP2
  • Microsoft Excel 2002 SP3
  • Microsoft Excel 2003
  • Microsoft Excel 2003 SP1
  • Microsoft Excel 2004 for Mac
  • Microsoft Excel Viewer 2003
  • Microsoft Excel X for Mac