Microsoft Excel contains a flaw related to a memory corruption error in the 'repair mode' functionality that may allow an attacker to execute remote arbitrary code. No further details have been provided.
Classification
Location:
Remote/Network Access Required
Attack Type:
Input Manipulation,
Unknown
Impact:
Loss of Integrity
Exploit:
Exploit Available
Disclosure:
Discovered in the Wild
OSVDB:
Web Related
Technical
This vulnerability is being exploited by the Mdropper.J Trojan.
Solution
Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround: don't open untrusted Excel documents.