Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security VulnWatch
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Fortinet Security Advisory: FSA-2006-08

from [Fortinet Research] Network Security [Permanent Link]
Subject: Fortinet Security Advisory: FSA-2006-08
Date: Tue, 14 Mar 2006 13:13:02 -0800 
Fortinet Security Advisory: FSA-2006-08

Microsoft Excel Column Index Improper Memory Access

Advisory Date      : March 14, 2006                     
Reported Date      : January 24, 2006
Vendor             : Microsoft                  
Affected Products  : Microsoft Excel 2003 Chinese Version
                     Windows XP Home Edition Chinese Version and 
                     possible all versions of Microsoft Excel.
Severity           : High
Reference          : 
http://www.microsoft.com/technet/security/Bulletin/MS06-012.mspx
                     http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0029
                     http://www.securityfocus.com/bid/15780
                   
Description        : Fortinet Security Research Team (FSRT) has discovered a 
Improper Memory Access Vulnerability in the Microsoft Excel software. This 
vulnerability is due to Microsoft Excel's manipulation of opcode 0x001D, when 
provided with a random Column Index, it will cause a Improper Memory Access. An 
remote attacker could construct a .xls file and put it on controlled web site. 
When the user opens the .xls file with Microsoft Internet Explorer, the browser 
will call Microsoft Excel to open the .xls file automatically, and this will 
cause Microsoft Excel to crash. If excel file is specially crafted, it may 
allow attackers to execute arbitrary code on the affected system.

Impact             : Execution of arbitrary code leading to system compromise.

Solution           : Microsoft has released a update for this vulnerability, 
which is available for downloading from Microsoft web site, see reference. 

Fortinet Protection: FortiGate series of security systems have been updated to 
detect exploits targeting this vulnerability.

Acknowledgment     : Dejun Meng of Fortinet Security Research team found this 
vulnerability. 

Disclaimer         : Although Fortinet has attempted to provide accurate 
information in these materials, Fortinet assumes no legal responsibility for 
the accuracy or completeness of the information. More specific information is 
available on request from Fortinet. Please note that Fortinet's product 
information does not constitute or contain any guarantee, warranty or legally 
binding representation, unless expressly identified as such in a duly signed 
writing.
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Fortinet Security Advisory: FSA-2006-08, Fortinet Research <=
Previous by Date:  Fortinet Security Advisory: FSA-2006-09, Fortinet Research
Next by Date:  [Full-disclosure] WLSI - Windows Local Shellcode Injection - Paper, Cesar
Previous by Thread:  Fortinet Security Advisory: FSA-2006-09, Fortinet Research
Next by Thread:  [Full-disclosure] WLSI - Windows Local Shellcode Injection - Paper, Cesar
Indexes:  [Date] [Thread] [Top] [All Lists]