/// File Name: |
ms09_067_excel_featheader.rb.txt |
Description:
|
This Metasploit module exploits a vulnerability in the handling of the FEATHEADER record by Microsoft Excel. Revisions of Office XP and later prior to the release of the MS09-067 bulletin are vulnerable. When processing a FEATHEADER (Shared Feature) record, Microsoft used a data structure from the file to calculate a pointer offset without doing proper validation. Attacker supplied data is then used to calculate the location of an object, and in turn a virtual function call. This results in arbitrary code exection. NOTE: On some versions of Office, the user will need to dismiss a warning dialog prior to the payload executing.
| Author: | Sean Larsson,jduck | Homepage: | http://www.metasploit.com | File Size: | 4752 | Related OSVDB(s): | 59860 | Related CVE(s): | CVE-2009-3129 | Last Modified: | Feb 15 17:09:58 2010 |
MD5 Checksum: | 2c5f0b59bdc07a89618fcbf2fd871a76 |
|