ITSS-Advisory : MEDIUM : Microsoft : Excel : Arbitrary Code Execution

THREAT LEVEL
============
Medium.

INFORMATION
===========
On 24 Feb 2009, Microsoft released an advisory regarding Excel.
Accessing a specially crafted Excel file could result in arbitrary
code execution on an affected computer.

There is no known official fix for this vulnerability at present.

More information is available at:
http://www.microsoft.com/technet/security/advisory/968272.mspx

AFFECTED PLATFORMS
==================
- Excel 2000 SP3
- Excel 2002 SP3
- Excel 2003 SP3
- Excel 2007 SP1
- Excel Viewer 2003
- Excel Viewer 2003 SP3
- Excel Viewer
- Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1
- Microsoft Office 2004 for Mac
- Microsoft Office 2008 for Mac

ACTION
======
Please request all users to assess the risks before accessing Excel files.
Users should not access unsolicited Excel files, or Excel files from unknown
sources.