検索:
ホーム   »     »   YAEE

YAEE

  • 投稿日:2006年6月21日
  • 脅威カテゴリ:未分類
  • 執筆:ウイルス解析担当者
0

Or ‘Yet Another Excel Exploit’. A post was made yesterday to
Full-Disclosure on a(nother) 0-day for Excel. And yes, code
execution is possible. This time, a user needs to open the file and
click on a (specially-crafted, a buzzword nowadays)link specified
inside the file to trigger the exploit. Same safety-precautions
apply when a 0-day is out:

Do not open Microsoft Excel files that you
receive from un-trusted sources.


This vulnerability could be exploited when a user opens an Excel
file and clicks on a specially-crafted link inside the file. Excel
files from trusted sources or Excel files that are known to be
trusted can continue to be used.


*slightly modified Suggested Action from Microsoft.

Trendlabs is currently in the process of creating a generic
pattern for this exploit.


No related posts.



  • 個人のお客さま向けオンラインショップ
  • |
  • 法人のお客さま向け直営ストア
  • |
  • 販売パートナー検索
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • 電子公告
  • ご利用条件
  • プライバシーポリシー
  • Copyright © 2021 Trend Micro Incorporated. All rights reserved.