Update Protection against Microsoft Excel Ghost Record Type Parsing Code Execution Vulnerability (MS10-080)
| Check Point Reference: | CPAI-2010-273 | |
| Date Published: | ||
| Severity: | ||
| Source: | Microsoft Security Bulletin MS10-080 | |
| Industry Reference(s): | CVE-2010-3242 | |
| Protection Provided by: |
Security Gateway
|
|
| Who is Vulnerable? Microsoft Excel 2002 SP3
Microsoft Office 2004 for Mac
Microsoft Office 2008 for Mac
Open XML File Format Converter for Mac
| ||
| Vulnerability Description A memory corruption vulnerability has been identified in Microsoft Excel. Microsoft Excel is a popular spreadsheet application. A remote attacker could exploit this issue via a malformed Excel file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. |
||
|
Update/Patch Available Apply patches: Microsoft Security Bulletin MS10-080 |
|
|
Vulnerability Details The vulnerability is due to an error in Microsoft Office Excel that fails to properly parse the Excel file format. A remote attacker could trigger this flaw by convincing a victim to open a specially crafted Excel file that includes a malformed Ghost record. Successful exploitation of this issue may allow execution of arbitrary code on a vulnerable system. |
Protection Overview
This protection will detect and block the transferring of malformed Excel files over HTTP.
In order for the protection to be activated, update your Security Gateway/VPN-1 product to the latest IPS/SmartDefense update. For information on how to update IPS/SmartDefense, go to SBP-2006-05, Protection tab, and select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.