Vulnerability in Microsoft Excel officially confirmed
Microsoft confirmed the vulnerability in Excel which had been discovered by Symantec yesterday. The vulnerability is a zero day breach.
After the vulnerability was discovered, Microsoft reacted fast. Yesterday Symantec announced that a piece of malware has been found that exploits an unknown vulnerability in Excel. With modified office files it would be possible to transfer more malicious code on the infected system.
The vulnerability has been confirmed by Microsoft and the company published a Security Advisory (968272). A solution for the problem is already worked on. The vulnerability of Excel is existent at the moment but it seems that it isn't a big thread yet, since there aren't many viruses or similar malware that make us of it.
All Excel versions up to Office Excel 2007 Service Pack 1 as well as Excel Viewer and Mac spin-offs are affected. As an imminent countermeasure Microsoft recommends to open Excel files from reliable sources only. It is unclear at the moment until when Microsoft wants to fix the vulnerability. Next Patchday would be March 10.