{"vuid":"VU#104302","idnumber":"104302","name":"Microsoft Excel malformed record memory corruption vulnerability","keywords":["Microsoft Office Excel","remote code execution","MS06-0031"],"overview":"Microsoft Excel contains a memory corruption vulnerability. This vulnerability may allow a remote attacker to execute arbitrary code on a vulnerable system.","clean_desc":"Microsoft Excel fails to properly validate records in data files. When a file with a malformed record is opened in Excel, system memory can be corrupted in a way that may allow an attacker to execute arbitrary code. More information is available in MS06-012.","impact":"A remote unauthenticated attacker may be able to execute arbitrary code.","resolution":"Apply a patch from your vendor \nMicrosoft addresses this vulnerability with the updates listed in Microsoft Security Bulletin MS06-012.","workarounds":"Do not access Excel files from untrusted sources By only accessing Excel files, such as spreadsheets, from trusted or known sources, the chances of exploitation are reduced.","sysaffected":"","thanks":"This issue was reported in Microsoft Security Bulletin \nMS06-012\n. Microsoft credits \nEyas of the \nXFOCUS Security Team with providing information regarding these issues.","author":"This document was written by Jeff Gennari.","public":["h","t","t","p",":","/","/","w","w","w",".","m","i","c","r","o","s","o","f","t",".","c","o","m","/","t","e","c","h","n","e","t","/","s","e","c","u","r","i","t","y","/","B","u","l","l","e","t","i","n","/","M","S","0","6","-","0","1","2",".","m","s","p","x"],"cveids":["CVE-2006-0031"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2006-03-14T19:16:19Z","publicdate":"2006-03-14T00:00:00Z","datefirstpublished":"2006-03-14T19:49:22Z","dateupdated":"2006-03-14T19:59:43Z","revision":8,"vrda_d1_directreport":"0","vrda_d1_population":"4","vrda_d1_impact":"3","cam_widelyknown":"15","cam_exploitation":"0","cam_internetinfrastructure":"0","cam_population":"20","cam_impact":"18","cam_easeofexploitation":"10","cam_attackeraccessrequired":"20","cam_scorecurrent":"20.25","cam_scorecurrentwidelyknown":"27","cam_scorecurrentwidelyknownexploited":"54","ipprotocol":"","cvss_accessvector":"--","cvss_accesscomplexity":"--","cvss_authentication":null,"cvss_confidentialityimpact":"--","cvss_integrityimpact":"--","cvss_availabilityimpact":"--","cvss_exploitablity":null,"cvss_remediationlevel":"ND","cvss_reportconfidence":"ND","cvss_collateraldamagepotential":"ND","cvss_targetdistribution":"ND","cvss_securityrequirementscr":"ND","cvss_securityrequirementsir":"ND","cvss_securityrequirementsar":"ND","cvss_basescore":"0","cvss_basevector":"AV:--/AC:--/Au:--/C:--/I:--/A:--","cvss_temporalscore":"0","cvss_environmentalscore":"0","cvss_environmentalvector":"CDP:ND/TD:ND/CR:ND/IR:ND/AR:ND","metric":20.25,"vulnote":null}