Critical Excel vulnerability features in July's 'patch Tuesday'

Excel 2007 featured in the security updates issued by Microsoft on July 10, the traditional second Tuesday scheduled for the company's monthly bulletins.

The Excel vulnerability could allow malicious code to be downloaded and run by causing a "buffer overflow" when a user opens a specially crafted Excel file. People with administrative user rights on their machine will be more at risk that those without.

Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

It is rated as critical for Microsoft Office 2000 and Excel 2000 with Service Pack 3 patches applied, but important for Office XP/Excel 2002, 2003 (Service Pack 2) and Excel 2007.

For an attack to be successful a user must open an attachment that is sent in an e-mail message.

Critical alerts were also published concerning the Windows Active Directory and .NET Framework. See July's security bulletin summary for links to full descriptions and patch downloads.

You may like these other stories...

Continuing its efforts to simplify accounting procedures, the FASB has issued a proposed Accounting Standards Update on customer fees paid in a cloud computing arrangement. The newly-proposed update (Intangibles—...
How are you planning? What tools do you use (or fail to use) for forecasting? PlanGuru is a business budgeting, forecasting, and performance review software company based in White Plains, N.Y. AccountingWEB recently spoke...
Event Date: October 30, 2014, 2 pm ETMany Excel users have a love-hate relationship with workbook links. For the uninitiated, workbook links allow you to connect one Microsoft Excel spreadsheet to other spreadsheets, Word...

Already a member? log in here.

Upcoming CPE Webinars

Aug 26
This webcast will include discussions of recently issued, commonly-applicable Accounting Standards Updates for non-public, non-governmental entities.
Aug 28
Excel spreadsheets are often akin to the American Wild West, where users can input anything they want into any worksheet cell. Excel's Data Validation feature allows you to restrict user inputs to selected choices, but there are many nuances to the feature that often trip users up.
Sep 9
In this session we'll discuss the types of technologies and their uses in a small accounting firm office.
Sep 11
This webcast will include discussions of commonly-applicable Clarified Auditing Standards for audits of non-public, non-governmental entities.