MS10-057: Vulnerability in Microsoft Office Excel Could Allow Remote Code Execution (2269707)
High Nessus Plugin ID 48294
SynopsisArbitrary code can be executed on the remote host through Microsoft Office Excel.
DescriptionThe remote host contains a version of Microsoft Office Excel 2002 or 2003 that is affected by a memory corruption vulnerability.
If an attacker can trick a user on the affected system into opening a specially crafted Excel file using the affected application, he may be able to leverage this issue to execute arbitrary code subject to the user's privileges.
SolutionMicrosoft has released a set of patches for Office Excel 2002 and Office Excel 2003.