News

Excel Bug Prompts Microsoft Advisory

Microsoft is looking into public reports of a vulnerability in Excel that could enable a remote code execution attack by hackers.

Microsoft is looking into public reports of a new-found vulnerability in its Microsoft Office Excel spreadsheet application that could enable a remote code execution attack by hackers. On Tuesday, Redmond issued an advisory outlining the problem.

Security solution provider Symantec Corp. claimed to have first discovered the Excel bug on Monday. Its researchers in an affiliate office in Japan found an unpatched vulnerability in Excel associated with the older .xls document format, according to a Symantec blog.

Symantec officials are calling the bug Trojan.Mdropper.AC. A malicious Excel file creates a Trojan-horse binary when the user opens the file. At the same time, a regular Excel document opens, masking the problem, according to the blog.

The technique isn't new, but the hackers added some tricks to cover the trail.

"We see this kind of behavior all the time, but as the analysis of the vulnerability progressed it became clear that this was a new vulnerability and the creators had used clever techniques to evade detection," said Vincent Weafer, vice president of Symantec Security Response, in an e-mailed comment. "The motivation behind this is not yet clear. As of yet, we have only seen a few targeted exploits of this vulnerability and continue to monitor for any signs of a widespread attack using this exploit."

In acknowledging the existence of the Excel problem, Microsoft said its advisory touches several Excel service pack versions in the 2000, 2002, 2003 and 2007 editions of the application. Excel Viewer is also affected, along with Excel 2004 and 2008 for Apple Inc.'s Mac.

"At this time, we are aware only of limited and targeted attacks that attempt to use this vulnerability," said Bill Sisk, senior program manager at Microsoft's Security Response Center in a statement issued on Tuesday. "We are developing a security update for Microsoft Office that addresses this vulnerability."

Sisk did not specify whether the patch would likely come in next month's slate or if it was merely for Excel or the whole Office suite of products.

About the Author

Jabulani Leffall is an award-winning journalist whose work has appeared in the Financial Times of London, Investor's Business Daily, The Economist and CFO Magazine, among others.

comments powered by Disqus

Featured

  • How to Unlock Visual Studio 2022's Preview Features Like Claude Sonnet 3.7 AI Model

    Some developers complained that advanced AI models come sooner to VS Code than Visual Studio, but the new Claude Sonnet 3.7 model is now available in IDE with a paid GitHub Copilot account and a simple settings tweak in GitHub.

  • Semantic Kernel Agent Framework Graduates to Release Candidate

    With agentic AI now firmly established as a key component of modern software development, Microsoft graduated its Semantic Kernel Agent Framework to Release Candidate 1 status.

  • TypeScript 5.8 Improves Type Checking, Conditional Feature Delayed to 5.9

    Microsoft shipped TypeScript 5.8 with improved type checking in some scenarios, but thorny problems caused the dev team to delay related work to the next release.

  • Poisson Regression Using C#

    Dr. James McCaffrey from Microsoft Research presents a complete end-to-end demo of Poisson regression, where the goal is to predict a count of things arriving, such as the number of telephone calls received in a 10-minute interval at a call center. When your source data is close to mathematically Poisson distributed, Poisson regression is simple and effective.

  • Cloud-Focused .NET Aspire 9.1 Released

    Along with .NET 10 Preview 1, Microsoft released.NET Aspire 9.1, the latest update to its opinionated, cloud-ready stack for building resilient, observable, and configurable cloud-native applications with .NET.

Most   Popular

Subscribe on YouTube

Upcoming Training Events

0 AM