Severity: : Medium
  CVE Kennungen: : CVE-2006-1308
  Advisory Date: 21 de июля de 2015

  DESCRIPTION

Unspecified vulnerability in Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted FNGROUPCOUNT value.

  INFORMATION EXPOSURE

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1005921
  Trend Micro Deep Security DPI Rule Name: 1005921 - Microsoft Excel Malformed FNGROUPCOUNT Value Vulnerability (CVE-2006-1308)

  AFFECTED SOFTWARE AND VERSION:

  • Microsoft Excel 2000
  • Microsoft Excel 2000 SP1
  • Microsoft Excel 2000 SP2
  • Microsoft Excel 2000 SP3
  • Microsoft Excel 2000 SR1
  • Microsoft Excel 2002
  • Microsoft Excel 2002 SP1
  • Microsoft Excel 2002 SP2
  • Microsoft Excel 2002 SP3
  • Microsoft Excel 2003
  • Microsoft Excel 2003 SP1
  • Microsoft Excel 2004 for Mac
  • Microsoft Excel Viewer 2003
  • Microsoft Excel X for Mac