• On MovieTome: TRANSFORMERS 2 SPOILERS!
advertisementAT&T Tech Support 360

June 16, 2006 10:14 AM PDT

New Excel zero-day flaw used in attacks

By Joris Evers
Staff Writer, CNET News

Related Stories

Microsoft plugs 21 security holes

 June 13, 2006

Bumper crop of Microsoft patches on the way

 June 8, 2006
A new, yet-to-be-patched security vulnerability in Microsoft's Excel has been exploited in at least one targeted cyberattack, experts warned on Friday.

A malicious Excel document is sent as an e-mail attachment or otherwise delivered by the attacker to the intended victim, Microsoft said in a posting to its Security Response Center blog. The Redmond, Wash., software maker said it has received one report from a customer who had been hit by such a problem.

"In order for this attack to be carried out, a user must first open a malicious Excel document," a Microsoft representative wrote. "So remember to be very careful opening unsolicited attachments from both known and unknown sources."

Samples of malicious Excel files called "okN.xls" have been found, Symantec said in an advisory. The malicious spreadsheet file contains a Trojan horse, called "Mdropper.J," and program called "Booli.A" that can download more malicious files to an infected PC, the security company said.

"Attackers are actively exploiting this vulnerability in targeted attacks," Symantec said. The issue appears to affect all versions of Excel, including Excel 2003 and Excel 2000. If the attempt is successful, the intruder will gain full control over the targeted computer, the company said.

Word of the outbreak and of the new flaw comes just days after Microsoft released 12 security bulletins with fixes for 21 vulnerabilities in several of its products, including Office. Some experts believe the timing of the new attack is no coincidence.

"In recent similar attacks, Microsoft has not issued an out-of-cycle patch," Scott Carpenter, director of Security Labs at Secure Elements, said in a statement. "The exploit's immediate release after 'Patch Tuesday' is evidently designed to take advantage of a full month before Microsoft is scheduled to patch it."

In addition, the monthly set of patches Microsoft released Tuesday included a fix for a Word flaw that had already been used in targeted cyberattacks. Instead of issuing an out-of-cycle patch, Microsoft recommended that users be careful in opening Word documents and that they run the application in safe mode.

Microsoft has not said whether it plans to release a fix for the new Excel flaw. The software maker said it has added detection capabilities to its Windows Live Safety Center for removal of malicious software that attempts to exploit the vulnerability.

See more CNET content tagged:
cyberattack, Microsoft Excel, flaw, fix, vulnerability

Add a Comment (Log in or register) 4 comments
excel zero day flaw
by whiner60 June 16, 2006 11:12 AM PDT
It seems to me( and I guess it's just me) that 30 days is too long to wait for a patch. Since Microsoft virtually owns the personal software market, can't they hire the best and brightest to solve these hacking problems say--Overnight?. Or, just go buy Symantec and have them do nothing but attack malicious code all day. Or is it a case of "there's money to be made here so let's not move too quickly". Of course, it would help if Microsoft were a software company and not a software MARKETING company.
Reply to this comment
This is why I use Open Office
by ralfthedog June 16, 2006 11:37 AM PDT
Unfortunatly, I know that people who work for me use Microsoft Office when working from home.
Reply to this comment
This is why I use Mac OS X
by the Otter June 16, 2006 12:12 PM PDT
I can use Excel 2004 for complete interoperability with every
version of Excel (Mac OS or Ms Windows) released since 1997, but I
don?t have to worry about these stupid Windows-based flaws.
Reply to this comment
Common comment: "That's why I use 'Anything But Microsoft' products
by 206538395198018178908092208948 June 16, 2006 5:15 PM PDT
For every Microsoft product there is a better alternative, it isn't just MS Office that is a threat to the Internet ecosystem.
Reply to this comment
Powered by Jive Software
advertisement

Latest tech news headlines

Resource center from News.com sponsors
You Need The Speed of Norton 2009
Introducing Norton Internet Security™2009

Click Here!
With one-click, one-minute install, under 8MB of memory usage and fewer, shorter scans, it's the fastest security suite anywhere. Norton. Smart Security, Engineered for Speed. Get a FREE trial today!

Click Here!
The Fastest Security Suite Anywhere

Experience the revolutionary Norton Internet Security™ 2009. With Norton™ Insight, a new feature, you get precision security that targets only at risk files for fewer, faster, shorter scans

Win a Trip to Space!*

Enter the Blast Off with Norton Sweepstakes for your shot at a trip to space. You could experience being fast and weightless, just like the new Norton 2009. *No purchase necessary; click for full details.

FREE Trial!

Act now to get your FREE trial of Norton Internet Security 2009. Try it for the protection. Love it for the speed

Norton Safe Web NEW!

A community-based system that rates web site safety

Norton Labs NEW!

Users can download new security technologies and share input directly with developers. Help us shape our future products!

RSS Feeds

Add headlines from CNET News to your homepage or feedreader.

More feeds available in our RSS feed index.

advertisement

Inside CNET News

Scroll Left Scroll Right
News
Latest news
Business tech
Green tech
Wireless
Security
Media
Popular topics
Apple iPhone
Apple iPod
Best hybrid cars
Cell phones
Dell
GPS
CNET sites
CNET TV
Downloads
News
Reviews
Shopper.com
Site map
More information
Newsletters
Corrections
Customer Help Center
RSS
What's new
About CNET