Thanks to NTCompatible for this one. Excel and PowerPoint have a macro security framework that controls the execution of macros and prevents macros from running automatically. Under this framework, any time a user opens a document the document is scanned for the presence of macros. If a document contains macros, the user is notified and asked if he wants to run the macros or the macros are disabled entirely, depending on the security setting. A flaw exists in the way macros are detected that can allow a malicious user to bypass macro checking.
A malicious attacker could attempt to exploit this vulnerability by crafting a specially formed Excel or PowerPoint document with macro code that would run automatically when the user opened it. The attacker could carry out this attack by hosting the malicious file on a web site, a file share, or by sending it through email.
Impact of vulnerability: Run code of attacker's choice.
Recommendation: Customers using affected versions of Excel and/or PowerPoint should apply the patch immediately.
Affected Software:
Microsoft Excel 2000 for Windows
Microsoft Excel 2002 for Windows
Microsoft Excel 98 for Macintosh
Microsoft Excel 2001 for Macintosh
Microsoft PowerPoint 2000 for Windows
Microsoft PowerPoint 2002 for Windows
Microsoft PowerPoint 98 for Macintosh
Microsoft PowerPoint 2001 for Macintosh
View: MS Technet security bulletin
A malicious attacker could attempt to exploit this vulnerability by crafting a specially formed Excel or PowerPoint document with macro code that would run automatically when the user opened it. The attacker could carry out this attack by hosting the malicious file on a web site, a file share, or by sending it through email.
Impact of vulnerability: Run code of attacker's choice.
Recommendation: Customers using affected versions of Excel and/or PowerPoint should apply the patch immediately.
Affected Software:
View: MS Technet security bulletin
| kb Article | Windows Update | Description of kb article |
| Q306458 | yes | AMD PowerNow! Functionality May Not Be Available in Windows XP |
| Q306580 | yes | Unexpected Power-Management Issues with Windows XP and Intel PIII CPU |
| Q306582 | no | Memory Leak Occurs with SoundBlaster Live! Device Driver |
| Q307271 | Dynamic Update | USB Speakers Make a "Pop" Sound When You Play Audio |
| Q307274 | no | Windows XP Stops Responding (Hangs) During Windows Shutdown |
| Q307316 | yes | Volume License Product ID Is Revealed During the Sysprep.exe Mini-Setup Wizard |
| Q307753 | yes | Micrografx Graphics Suite 2 Starts Minimized or Off Screen |
| Q307754 | yes | Cannot Print from a Window XP-Based Computer to a Shared Printer on a Windows 95-Based Computer |
| Q307869 | yes | Files and Settings Are Not Transferred When You Use the Files and Settings Transfer Wizard |
| Q307969 | no | Error Message After Installing a Hewlett-Packard 4400-Series Scanner on the Parallel Port |
| Q308035 | yes | Computer Stops Responding When Shim Code Has a Buffer Overrun |
| Q308131 | no | You May Not Be Able to Sign Up for the Internet by Using a Modem |
| Q308210 | yes | Remote Assistance May Not Connect to a Multiple-Homed Windows XP Computer with the Personal Firewall Feature Enabled |
| Q308276 | no | You Cannot Stop a Counter Log in Performance Monitor |
| Q308285 | yes | Alps Pointing-Device Is Listed as Alps Touchpad in Device Manager |
| Q308306 | yes | Contact Information for Epson Stylus Photo Is Incorrect on Windows XP |
| Q308307 | yes | Third-Party Programs Have Functionality Issues in Windows XP |
| Q308361 | yes | Quake Quits Abnormally in Windows XP |
| Q308362 | yes | Error Message Appears When You Start Laplink PCsync Version 2.0 on Windows XP |
| Q308381 | yes | Third-Party Programs May Experience Wrong Behaviors and Errors in Windows XP |
| Q308387 | no | Autolfn.exe May Build Sound Files with Damaged File Names |
| Q308402 | Home or Pro | Cannot Log On to Recovery Console After Running Sysprep in Windows XP |
| Q308414 | IE6 fix | Patch Available for HTTP Request Encoding Vulnerability |
| Q308676 | no | Screen Stays Black for Several Minutes Before "Please Wait" Message Appears After You Run Factory.exe |
| Q308677 | no | Error Message Appears When a Limited User Tries to Stream Media in Windows Media Player |
| Q308928 | no | The MCI_PLAY Command Returns No Response for Five or More Seconds |
| Q309073 | yes | WinXP: Invalid Universal Plug and Play Request can Disrupt System Operation |
| Q309126 | Dynamic Update | An Error Message Appears with an Asus Video Adapter in Windows XP |
| Q309127 | yes | List of Fixes That Are Included in the Windows XP Dynamic Update Package |
| Q309376 | no | A Long Time Is Needed to Open a File By Using SMB |
| Q309440 | no | A 3Dlabs Wildcat 5110 AGP Video Adapter Is Not Detected in the AGP Slot on Itanium-Based Computers |
| Q309447 | yes | Content Search Does Not Search All File Types for the Specified String |
| Q309495 | no | Problems with Windows Installer Over Wireless Connection |
| Q309521 | yes | Windows XP Update Package - October 25 2001 |
| Q309691 | yes | Compact Disc Recorded in Windows XP Is Missing Files or Folders or Is Unreadable |
| Q310407 | yes | Access Violation When You Run ASP Page or VBScript Program |
| Q310436 | yes | Cannot Play a DVD in Windows XP |
| Q310437 | yes | Cannot Start the UPS Service |
| Q310507 | yes | Enabling Acoustic Echo Cancellation and DV Camera/TV Tuner Support in Windows Messenger |
| Q310510 | yes | Playback and Copy-Protection Issues When You Try to Play the Snow White and the Seven Dwarfs DVD Movie |
| Q310527 | Dynamic Update | Stop Error When You Upgrade from Windows 2000: Bad_Pool_Caller 0xC2 |
| Q310528 | Dynamic Update | Issue Installing Windows XP on Computers That Have Wireless LAN Adapters |
Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!
Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.