On UrbanBaby: What is a Helicopter Mom?
BNET Business Network:
BNET
TechRepublic
ZDNet

February 23rd, 2009

Brand spanking new Excel 0-day being exploited in the wild

Posted by Adam O'Donnell @ 6:47 pm

Categories: Arbitrary Code Execution, Malware, Microsoft, Symantec, Zero-day attacks

Tags: Brand, Vulnerability, Microsoft Excel 2007, Details, Microsoft Excel, Microsoft Office, Security, Office Suites, Software, Adam O'Donnell

Symantec is reporting that a new remote vulnerability has been discovered in Microsoft Excel 2007, and that this vulnerability is being exploited in the wild.

Details are sparse, but it looks like Symantec has discovered a code-execution vulnerability in Excel 2007 and Excel 2007 SP1. The issue is being actively exploited in the wild by a variant of the Mdropper trojan.

There is no patch for the vulnerability yet, so until one arrives, don’t open anything that looks like an Excel document from sources you cannot completely trust and verify.

Adam O'DonnellAdam J. O'Donnell, Ph.D. is an R&D engineer who has focused on computer security since 2000. He currently is the Director of Emerging Technologies at Cloudmark, a messaging security company located in San Francisco. See his full profile and disclosure of his industry affiliations.

Email Adam O'Donnell

Subscribe to Zero Day via Email alerts or RSS.

  • Talkback
  • Most Recent of 8 Talkback(s)
People are smarter than that?
Really? Maybe if you had qualified your statement with "some" or even "most" you'd have a point. No, people are not smarter than that. People do things without thinking many times every single day.... (Read the rest)
Posted by: jasonp@... Posted on: 02/25/09 You are currently: a Guest | | Terms of Use
OPEN OFFICE ?  Brent R Brian | 02/24/09
Double check before doing that.  phatkat | 02/24/09
RE: Brand spanking new Excel 0-day being exploited in the wild  Loverock Davidson | 02/24/09
dadhog said "no they're not"  ttheys@... | 02/24/09
Got two words for you:  ejhonda | 02/24/09
Don't underestimate a persons ability to get into trouble.  NetSecKC | 02/25/09
People are smarter than that?  jasonp@... | 02/25/09
RE: Brand spanking new Excel 0-day being exploited in the wild  dadhog | 02/24/09

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Essential Topics Click Here

advertisement

Recent Entries

advertisement

Archives

Favorite Links

ZDNet Blogs

White Papers, Webcasts, and Downloads

  • Smart Tech Expert advice on innovations in healthcare and the green technologies that make it happen. Find out more
  • Smart Business Discussion and advice on management issues that revolve around making your world smarter and more useful. More Smart Advice
  • Smart People The best and worst moves in the management and strategy trenches. Learn More