Excel Vulnerability Hit By Worm

A yet to be patched security vulnerability in Microsoft's Excel has begun to be exploited. A malicious Excel document is sent as an e-mail attachment...


A yet to be patched security vulnerability in Microsoft's Excel has begun to be exploited. A malicious Excel document is sent as an e-mail attachment or otherwise delivered by the attacker to the intended victim, Microsoft said in a posting to its Security Response Center blog.

Symantec has filed an advisory for this vulnerability. The malicious spreadsheet file contains a Trojan horse, called "Mdropper.J," and program called "Booli.A" that can download more malicious files to an infected PC, the security company has said. The vulnerability affects all versions of Excel, including Excel 2003 and Excel 2000. If the attempt is successful, the intruder will gain full control over the targeted computer, the company said.

Word of the outbreak and of the new flaw comes just days after Microsoft released updates on “Patch Tuesday” for several of its products, including Office. Some experts believe the timing of the new attack is no coincidence as with the patching done for the month, Microsoft will not venture out and release an out of cycle patch.

Find latest and upcoming tech gadgets online on Tech2 Gadgets. Get technology news, gadgets reviews & ratings. Popular gadgets including laptop, tablet and mobile specifications, features, prices, comparison.