Intrusion PreventionMS.Excel.ExternSheet.Heap.Overflow
Description
This indicates an attack attempt to exploit a Heap Overflow vulnerability in Microsoft Excel.
The vulnerability is caused by an error that occurs when the vulnerable software handles a malicious "XLS" file. A remote attacker can exploit this to execute arbitrary code via a crafted "XLS" file.
Affected Products
Microsoft Open XML File Format Converter for Mac
Microsoft Office Compatibility Pack 2007 SP2
Microsoft Office Compatibility Pack 2007 SP1
Microsoft Office Compatibility Pack 2007
Microsoft Office 2008 for Mac
Microsoft Office 2004 for Mac
Microsoft Excel Viewer SP2
Microsoft Excel Viewer SP1
Microsoft Excel Viewer
Microsoft Excel 2010
Microsoft Excel 2007 SP2
Microsoft Excel 2007 SP1
Microsoft Excel 2007
Microsoft Excel 2003 SP3
Microsoft Excel 2003 SP2
Microsoft Excel 2003 SP1
+ Microsoft Office 2003 SP1
Microsoft Excel 2003
+ Microsoft Office 2003
Microsoft Excel 2002 SP3
+ Microsoft Office XP SP3
Microsoft Excel 2002 SP2
+ Microsoft Office XP SP2
Microsoft Excel 2002 SP1
+ Microsoft Office XP SP1
Microsoft Excel 2002
+ Microsoft Office XP
Microsoft Excel
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the latest update from the vendor.
Microsoft Office 2008 for Mac
Microsoft Office2008-1229UpdateEN.dmg
http://www.microsoft.com/downloads/details.aspx?FamilyID=84dfe3f4-a2a1-47b9-8da1-29ae67230918
Microsoft Excel 2003 SP3
Microsoft office2003-KB2502786-FullFile-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=916a076d-d754-4092-b23d-c8826db7e397
Microsoft Office Compatibility Pack 2007 SP2
Microsoft Office2007-kb2466156-fullfile-x86-glb.exe
http://www.microsoft.com/downloads/details.aspx?familyid=946cc611-4d75-4728-b9d3-1c8b557b02c2
Microsoft Excel 2010
Microsoft Excel2010-kb2466146-fullfile-x86-glb.exe
http://www.microsoft.com/downloads/details.aspx?familyid=a427f0e2-b74d-4ef3-bec4-0a101d09bfa3
Microsoft Excel2010-kb2466146-fullfile-x64-glb.exe
http://www.microsoft.com/downloads/details.aspx?familyid=13dca35d-2209-4c5c-9150-d6db2bb3b496
Microsoft Open XML File Format Converter for Mac
Microsoft OpenXMLConverter119.dmg
http://www.microsoft.com/downloads/details.aspx?FamilyID=0c323a12-6385-4666-ad39-a9516a8eda14
Microsoft Excel 2002 SP3
Microsoft officexp-KB2466169-FullFile-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=db2c5cfe-588c-4646-b86a-3fb8248f7af4
Microsoft Excel 2007 SP2
Microsoft excel2007-kb2464583-fullfile-x86-glb.exe
http://www.microsoft.com/downloads/details.aspx?familyid=5ae34fe0-03bd-48a9-a7ac-de8f7b1aff90
Microsoft Office 2004 for Mac
Microsoft Office2004-1163UpdateEN.dmg
http://www.microsoft.com/downloads/details.aspx?FamilyID=f756d836-6ab2-4adb-9dee-6cb523d7c1f5
Microsoft Excel Viewer SP2
Microsoft Office-kb2466158-fullfile-x86-glb.exe
http://www.microsoft.com/downloads/details.aspx?familyid=2d75786a-2368-4ef2-970b-fa2e57d63ca9
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
| ID | 29172 |
| Created | Sep 20, 2011 |
| Updated | Nov 15, 2021 |
| Risk |
|
| CVE ID | CVE-2011-0098 |
| Exploit Prediction Score | 96.56% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | MS_Office |