March patch fixes critical Excel hole
Microsoft during its monthly patch release has issued one update for Windows and one for Microsoft Office.
The Office update patches five separate vulnerabilities in Excel. Depending on the version of the software, the flaws are rated critical to important. The vulnerability affects Office for both Windows and Apple's OS X. It could allow an attacker to take over control of a system through the use of a specially crafted Excel spreadsheet. However, the user would have to manually open the file to get infected.
A sixth Office vulnerability affects a range of Office applications for Windows and again could expose a user to a remote code execution, allowing a attacker to install spyware or other malware.
The Windows flaw affects only system running Windows XP SP1 and Windows Server 2003. It could cause a privilege escalation, allowing a user with an existing login account that is configured with limited privileges to gain full control over a system.
Microsoft furthermore issued a security advisory alerting users to an update to Adobe published to its Macromedia Flash Player. The software is bundled with Windows.
Microsoft during its monthly patch release has issued one update for Windows and one for Microsoft Office.
The Office update patches five separate vulnerabilities in Excel. Depending on the version of the software, the flaws are rated critical to important. The vulnerability affects Office for both Windows and Apple's OS X. It could allow an attacker to take over control of a system through the use of a specially crafted Excel spreadsheet. However, the user would have to manually open the file to get infected.
A sixth Office vulnerability affects a range of Office applications for Windows and again could expose a user to a remote code execution, allowing a attacker to install spyware or other malware.
The Windows flaw affects only system running Windows XP SP1 and Windows Server 2003. It could cause a privilege escalation, allowing a user with an existing login account that is configured with limited privileges to gain full control over a system.
Microsoft furthermore issued a security advisory alerting users to an update to Adobe published to its Macromedia Flash Player. The software is bundled with Windows.
Share this page
Email this page
Back to Top
Home
Edit Post
0 comments: