New MS Excel vulnerability could allow remote code execution (SANS Internet Storm Center; Cooperative Network Security Community - Internet Security - isc)

MicrosoftExcel脆弱性についてアドバイザリをだしています

標的方攻撃で既に使われているそうですので要注意です!

Microsoft has just released an advisory and blog entry on a newly discovered vulnerability in MS Excel products. The vulnerability is, according to the blog, already actively exploited by targeted attacks. Excel 2003SP3 and Excel 2007 are not affected, but most other versions are.

Excel 2000 SP3の人は影響を受けないそうです。

影響を受けるのは、Excel 2000 (Office 2000) /Excel 2002 (Office XP)/Excel 2003 SP2以前 (Office 2003), Excel Viewer 2003/Excel 2004 for Macになります。

screenshot