{"vuid":"VU#642428","idnumber":"642428","name":"Microsoft Excel fails to properly perform range validation when parsing document files","keywords":["Microsoft Excel","parsing document files","msvcrt.memmove() function"],"overview":"Microsoft Excel contains an error in range validation, which may allow a remote unauthenticated attacker to execute arbitrary code on a vulnerable system.","clean_desc":"Microsoft Excel fails to properly validate ranges in data files. When a file with a malformed range is opened in Excel, system memory can be corrupted in a way that may allow an attacker to execute arbitrary code.","impact":"By convincing a user to open a specially crafted Excel file, a remote unauthenticated attacker may be able to execute arbitrary code on a vulnerable system.","resolution":"Install an update Install an update, as specified in Microsoft Security Bulletin MS06-012.","workarounds":"Do not open Excel files from untrusted sources By only opening Excel files, such as spreadsheets, from trusted or known sources, the chances of exploitation are reduced.","sysaffected":"","thanks":"This vulnerability was publicly disclosed by fearwall.","author":"This document was written by Will Dormann.","public":["http://www.microsoft.com/technet/security/Bulletin/MS06-012.mspx","http://www.securityfocus.com/bid/15780","http://securitytracker.com/id?1015333","http://xforce.iss.net/xforce/xfdb/23537","http://www.eweek.com/article2/0,1759,1899697,00.asp?kc=EWRSS03129TX1K0000614"],"cveids":["CVE-2005-4131"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2005-12-09T19:50:42Z","publicdate":"2005-12-07T00:00:00Z","datefirstpublished":"2006-03-14T19:47:25Z","dateupdated":"2006-03-14T19:47:34Z","revision":8,"vrda_d1_directreport":"","vrda_d1_population":"","vrda_d1_impact":"","cam_widelyknown":"10","cam_exploitation":"0","cam_internetinfrastructure":"5","cam_population":"15","cam_impact":"15","cam_easeofexploitation":"13","cam_attackeraccessrequired":"20","cam_scorecurrent":"16.453125","cam_scorecurrentwidelyknown":"27.421875","cam_scorecurrentwidelyknownexploited":"49.359375","ipprotocol":"","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":16.453125,"vulnote":null}