Skip Ribbon Commands
Skip to main content
Computer Emergency Response Team of Mauritius (CERT-MU)

VN-2017-54


Microsoft Excel Flaw Lets Remote Users Obtain Potentially Sensitive Information from Memory on the Target System
Severity Rating: Medium
Systems Affected:
  • Excel 2007 SP3, 2010 SP2
  • Microsoft Office Compatibility Pack SP2
Description
A vulnerability has been identified in Microsoft Excel and can allow a remote attacker to gain sensitive information on the vulnerable system. The vulnerability can allow a remote attacker to create a specially crafted document that when loaded by the user via Microsoft Excel, will access potentially sensitive information from memory on the target user's system.
 
Solution
 
Users are advised to apply updates.
More information about the update is available on:
 
Vendor Information
Microsoft
 
CVE Information
 
References
Security Tracker
 
Microsoft Security Response Centre
 
Contact Information
 
Postal address
Mauritian Computer Emergency Response Team (CERT-MU)
National Computer Board
7th Floor, Stratton Court
La Poudriere Street
Port Louis