Access member only content, take part in discussions with comments on blogs, news and reviews and receive all the latest security industry news directly to your inbox. Join now for free.
A confirmation email has been sent to your email address - SUPPLIED EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @scmagazine.com.au to your white-listed senders.
A new zero-day vulnerability is affecting Microsoft Excel, the software giant warned in an advisory.
The bug was first noticed by Symantec researchers, who witnessed '"suspicious" Excel 2007 spreadsheets targeting customers in Japan, Patrick Fitzgerald said in a post on the company's website. The attackers are employing techniques to evade detection, such as encrypting the binary embedded in the malicious Excel document.
Successful exploitation allows an attacker to launch remote code and gain privileges as the local user, according to Microsoft. So far, attacks have been "limited and targeted," the company said. The issue impacts all supported versions of Excel, including Microsoft Office 2004 and 2008 for Mac.
An attack can occur by tricking a victim into opening an email attachment or visiting a website hosting the exploit, the advisory said.
The flaw is related to a boundary condition error, according to a SecurityFocus advisory published earlier this week.
Paul Henry, security and forensic analyst for patch management provider Lumension Security, said this zero-day flaw joins a number of previously patched Excel bugs that still are being leveraged in limited attacks. Roughly six or seven different Excel exploits remain active, Henry said.
Attackers often use social engineering tactics to spread the exploit, Henry said.
"The biggest fear here are targeted exploits -- going after specific individuals or companies or, for that matter, specific government entities," he told SCMagazineUS.com. "You typically wouldn't think twice about opening an Excel spreadsheet from a perceived friend or business partner."
Symantec is detecting the malicious spreadsheets "Trojan.Mdropper.AC."
To begin commenting right away, you can log in below or register an account if you don't yet have one. Please read our guidelines on commenting. Offending posts will be removed and your access may be suspended. Abusive or obscene language will not be tolerated. The comments below do not necessarily reflect the views or opinions of SC Magazine, Haymarket Media or its employees.