CERTA-2008-AVI-404
Vulnerability from certfr_avis

Plusieurs vulnérabilités ont été identifiées dans l'application bureautique Microsoft Excel. Elles peuvent être exploitées à distance via un fichier spécialement construit afin d'exécuter des commandes arbitraires sur le système vulnérable sur lequel le document serait ouvert.

Description

Plusieurs vulnérabilités ont été identifiées dans l'application bureautique Microsoft Excel :

  • l'application ne manipule pas correctement les enregistrements FORMAT dans un document Excel servant à l'indexation de tables ;
  • l'application ne manipule pas correctement les enregistrements AxesSet de graphiques inclus dans un document Excel ;
  • l'application ne traite pas correctement les formats de fichiers BIFF et en particulier les enregistrements COUNTRY ;
  • l'application ne détruit pas correctement la chaîne de caractères servant de mot de passe quand le fichier est paramétré pour ne pas paramétré pour ne pas enregistrer le mot de passe de session de données distant.

Ces vulnérabilités peuvent être exploitées et provoquer une corruption de mémoire afin d'exécuter du code arbitraire.

Solution

Se référer au bulletin de sécurité MS08-043 de Microsoft pour l'obtention des correctifs (cf. section Documentation).

None
Impacted products
Vendor Product Description
Microsoft Office Microsoft Office Excel Viewer 2003 Service Pack ;
Microsoft N/A Microsoft Excel 2002 Service Pack 3 ;
Microsoft Office Microsoft Office SharePoint Server 2007 x64 Edition ;
Microsoft Office Microsoft Office SharePoint Server 2007 Service Pack 1 ;
Microsoft Office Microsoft Office 2008 pour Mac.
Microsoft Office Microsoft Office SharePoint Server 2007 ;
Microsoft Office Microsoft Office SharePoint Server 2007 Service Pack 1 x64 Edition ;
Microsoft Office Microsoft Office Excel Viewer 2003 ;
Microsoft Office Microsoft Office Excel Viewer ;
Microsoft N/A Microsoft Excel 2003 Service Pack 3 ;
Microsoft Office Microsoft Office Compatibility Pack pour les formats Office 2007 ;
Microsoft N/A Microsoft Excel 2007 Service Pack 1 ;
Microsoft N/A Microsoft Excel 2000 Service Pack 3 ;
Microsoft N/A Microsoft Excel 2007 ;
Microsoft Office Microsoft Office Compatibility Pack pour les formats Office 2007 Service Pack 1 ;
Microsoft Office Microsoft Office 2004 pour Mac ;
Microsoft N/A Microsoft Excel 2003 Service Pack 2 ;
References

Show details on source website

To clipboard 

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Microsoft Office Excel Viewer 2003 Service Pack ;",
      "product": {
        "name": "Office",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Excel 2002 Service Pack 3 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Office SharePoint Server 2007 x64 Edition ;",
      "product": {
        "name": "Office",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Office SharePoint Server 2007 Service Pack 1 ;",
      "product": {
        "name": "Office",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Office 2008 pour Mac.",
      "product": {
        "name": "Office",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Office SharePoint Server 2007 ;",
      "product": {
        "name": "Office",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Office SharePoint Server 2007 Service Pack 1 x64 Edition ;",
      "product": {
        "name": "Office",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Office Excel Viewer 2003 ;",
      "product": {
        "name": "Office",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Office Excel Viewer ;",
      "product": {
        "name": "Office",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Excel 2003 Service Pack 3 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Office Compatibility Pack pour les formats Office 2007 ;",
      "product": {
        "name": "Office",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Excel 2007 Service Pack 1 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Excel 2000 Service Pack 3 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Excel 2007 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Office Compatibility Pack pour les formats Office 2007 Service Pack 1 ;",
      "product": {
        "name": "Office",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Office 2004 pour Mac ;",
      "product": {
        "name": "Office",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Microsoft Excel 2003 Service Pack 2 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 identifi\u00e9es dans l\u0027application\nbureautique Microsoft Excel\u00a0:\n\n-   l\u0027application ne manipule pas correctement les enregistrements\n    FORMAT dans un document Excel servant \u00e0 l\u0027indexation de tables ;\n-   l\u0027application ne manipule pas correctement les enregistrements\n    AxesSet de graphiques inclus dans un document Excel ;\n-   l\u0027application ne traite pas correctement les formats de fichiers\n    BIFF et en particulier les enregistrements COUNTRY ;\n-   l\u0027application ne d\u00e9truit pas correctement la cha\u00eene de caract\u00e8res\n    servant de mot de passe quand le fichier est param\u00e9tr\u00e9 pour ne pas\n    param\u00e9tr\u00e9 pour ne pas enregistrer le mot de passe de session de\n    donn\u00e9es distant.\n\nCes vuln\u00e9rabilit\u00e9s peuvent \u00eatre exploit\u00e9es et provoquer une corruption\nde m\u00e9moire afin d\u0027ex\u00e9cuter du code arbitraire.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 MS08-043 de Microsoft pour\nl\u0027obtention des correctifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2008-3004",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-3004"
    },
    {
      "name": "CVE-2008-3005",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-3005"
    },
    {
      "name": "CVE-2008-3006",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-3006"
    },
    {
      "name": "CVE-2008-3003",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-3003"
    }
  ],
  "initial_release_date": "2008-08-13T00:00:00",
  "last_revision_date": "2008-08-13T00:00:00",
  "links": [
    {
      "title": "Avis de s\u00e9curit\u00e9 TippingPoint ZDI-08-048 du 12 ao\u00fbt 2008 :",
      "url": "http://www.zerodayinitiative.com/advisories/ZDI-08-048"
    },
    {
      "title": "Avis de s\u00e9curit\u00e9 iDefense du 12 ao\u00fbt 2008 :",
      "url": "http://labs.idefense.com/intelligence/vulnerabilities/"
    }
  ],
  "reference": "CERTA-2008-AVI-404",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2008-08-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Plusieurs vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 identifi\u00e9es dans l\u0027application\nbureautique Microsoft Excel. Elles peuvent \u00eatre exploit\u00e9es \u00e0 distance\nvia un fichier sp\u00e9cialement construit afin d\u0027ex\u00e9cuter des commandes\narbitraires sur le syst\u00e8me vuln\u00e9rable sur lequel le document serait\nouvert.\n",
  "title": "Vuln\u00e9rabilit\u00e9s dans Microsoft Excel",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft MS08-043 du 12 ao\u00fbt 2008",
      "url": "http://www.microsoft.com/technet/security/Bulletin/MS08-043.mspx"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.