The flaw, which could be used by an attacker to take complete control of an affected PC, only affects Japanese, Korean and Chinese versions of Excel 2000, 2002 and 2003, as well as Microsoft Office 2000, XP and 2003, according to an advisory by the French Security Incident Response Team (FrSIRT).
"The flaw is due to a memory corruption error when handling or repairing a document containing overly long styles, which could be exploited by attackers to execute arbitrary commands by convincing a user to open or repair a specially crafted Excel file," according to the FrSIRT advisory.
No patch is available for the flaw, according to FrSIRT.
In the days following June's Patch Tuesday release, two new flaws for Excel were found.
Microsoft officials urged safe web-surfing and email practices in response to the flaws.
This Tuesday, Microsoft will release seven more patches – four for Microsoft Windows and three for Office.
.png&h=140&w=231&c=1&s=0)
.png&w=100&c=1&s=0)
iTnews Benchmark Security Awards 2025
Digital Leadership Day Federal
Government Cyber Security Showcase Federal
Government Innovation Showcase Federal
Digital NSW 2025 Showcase
_(1).jpg&h=140&w=231&c=1&s=0)
