Description: Two vulnerabilities have been reported in Microsoft Excel, which can be exploited by malicious people to compromise a user's system.
1) An error may cause an invalid object to be referenced when opening an Excel document and can be exploited via a specially crafted Excel spreadsheet file.
NOTE: According to Microsoft, the vulnerability is currently being actively exploited.
2) An error when processing an unspecified 16-bit value extracted from an Excel document can be exploited to corrupt memory.
Successful exploitation may allow execution of arbitrary code.
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.