Alerta da Microsoft, intitulado "MS07-023 - Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (934233)", que trata de vulnerabilidades recem-descobertas no Microsoft Excel.
As vulnerabilidades existem devido `a maneira impropria como o Excel manipula arquivos com campos no formato BIFF mal formados e arquivos com conjuntos de caracteres ou filtros de campos especialmente preparados.
As tres vulnerabilidades encontradas no Excel podem permitir a execucao remota de codigo, e caso um atacante consiga explorar com sucesso alguma destas vulnerabilidades, ele podera obter o controle total sobre o sistema afetado.
Sistemas afetados:
. Microsoft Office 2000 Service Pack 3 - Microsoft Excel 2000 . Microsoft Office XP Service Pack 3 - Microsoft Excel 2002 . Microsoft Office 2003 Service Pack 2 - Microsoft Excel 2003 . Microsoft Office 2003 Service Pack 2 - Microsoft Excel 2003 Viewer . 2007 Microsoft Office System - Microsoft Office Excel 2007 . 2007 Microsoft Office System - Microsoft Office Compatibility Pack para Word, Excel, e PowerPoint 2007 FileFormats . Microsoft Office 2004 for Mac
Correcoes disponiveis:
Recomenda-se fazer a atualizacao para as versoes disponiveis em :
. Microsoft Office 2000 Service Pack 3 - Microsoft Excel 2000
http://www.microsoft.com/downloads/details.aspx?FamilyId=5F101D03-C0A7-41E0-95A4-A12AFB356D5F
. Microsoft Office XP Service Pack 3 - Microsoft Excel 2002
http://www.microsoft.com/downloads/details.aspx?FamilyId=29596861-D9F0-4A10-9E1C-CDA75DDE017D
. Microsoft Office 2003 Service Pack 2 - Microsoft Excel 2003
http://www.microsoft.com/downloads/details.aspx?FamilyId=9567C583-556F-4379-80BA-3E0C8993C04C
. Microsoft Office 2003 Service Pack 2 - Microsoft Excel 2003 Viewer
http://www.microsoft.com/downloads/details.aspx?FamilyId=9567C583-556F-4379-80BA-3E0C8993C04C
. 2007 Microsoft Office System - Microsoft Office Excel 2007
http://www.microsoft.com/downloads/details.aspx?FamilyId=CED9F11B-CE48-47A3-9288-BD11B80F3D85
. 2007 Microsoft Office System - Microsoft Office Compatibility Pack para Word, Excel, e PowerPoint 2007 FileFormats
http://www.microsoft.com/downloads/details.aspx?FamilyId=50A7924F-DB51-438A-B27D-37E40A471E60
. Microsoft Office 2004 for Mac
http://www.microsoft.com/mac
Mais informacoes:
. MS07-023 - Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (934233)
http://www.microsoft.com/technet/security/Bulletin/MS07-023.mspx
. Microsoft Brasil Security
http://www.microsoft.com/brasil/security
. Technet Brasil - Central de Seguranca
http://www.technetbrasil.com.br/seguranca
. Windows Live OneCare
http://safety.live.com/site/pt-BR/default.htm
Identificador CVE (http://cve.mitre.org/): CVE-2007-0215, CVE-2007-1203
CVE-2007-1214
Fonte:
http://www.rnp.br/cais/alertas/rss.xml
Assinar:
Postar comentários (Atom)
Nenhum comentário:
Postar um comentário