Symantec product detections for Microsoft monthly Security Advisories - March 2010

Article:TECH137301  |  Created: 2010-08-04  |  Updated: 2013-07-22  |  Article URL http://www.symantec.com/docs/TECH137301
Article Type
Technical Solution


Issue



This document describes Symantec product detections for the Microsoft vulnerabilities for which Microsoft releases patches in their monthly Security Advisories.

 

Note: Symantec posts this information shortly after it becomes available from Microsoft. Any missing information will be added to the document as it becomes available.


Solution



 

March 09, 2010

 

 ID and Rating

 

Description

Details

Intrusion Protection System (IPS) Response

Other Detections

CAN/CVE ID:

CVE-2010-0264

 

BID:

38555

 

Microsoft ID:

MS10-017

 

MSKB:

980150

 

Microsoft Rating:

Important

Microsoft Excel DbOrParamQry Record Remote Code Execution Vulnerability

 

Remote Code Execution Vulnerability

 

This vulnerability affects the following products:

Microsoft Office Excel 2002 SP3

Microsoft Office 2004 for Mac

Microsoft Office 2008 for Mac

Open XML File Format Converter for Mac

A remote code execution vulnerability affects Excel when handling specially crafted Excel files.

An attacker can exploit this issue by tricking an unsuspecting victim into opening a malicious file.

A successful exploit will result in the execution of arbitrary attacker-supplied code in the context of the currently logged-in user.

Sig ID: N/A

AV:

Bloodhound.Exploit.318

 

Sygate IDS:

N/A

CAN/CVE ID:

CVE-2010-0263

 

BID:

38554

 

Microsoft ID:

MS10-017

 

MSKB:

980150

 

Microsoft Rating:

Important

Microsoft Excel XLSX File Parsing Remote Code Execution Vulnerability

 

Remote Code Execution Vulnerability

 

This vulnerability affects the following products:

Microsoft Office Excel 2007 SP1 and SP2

Microsoft Office 2008 for Mac

Open XML File Format Converter for Mac

Microsoft Office Excel Viewer SP1 and SP2

Microsoft Office Compatibility Pack for Word, Excel

PowerPoint 2007 File Formats SP1 and SP2

Microsoft Office SharePoint Server 2007 SP1 and SP2 (32-bit editions)

Microsoft Office SharePoint Server 2007 SP1 and SP2 (64-bit editions)

A remote code execution vulnerability affects Excel when handling specially crafted Excel files.

An attacker can exploit this issue by tricking an unsuspecting victim into opening a malicious file.

 A successful exploit will result in the execution of arbitrary attacker-supplied code in the context of the currently logged-in user.

Sig ID: N/A

AV:

N/A

 

Sygate IDS:

N/A

CAN/CVE ID:

CVE-2010-0262

 

BID:

38553

 

Microsoft ID:

MS10-017

 

MSKB:

980150

 

Microsoft Rating:

Important

Microsoft Excel FNGROUPNAME Record Remote Code

Execution Vulnerability

 

Remote Code Execution Vulnerability

 

This vulnerability affects the following products:

Microsoft Office Excel 2007 SP1 and SP2

Microsoft Office 2004 for Mac

A remote code execution vulnerability affects Excel when handling specially crafted Excel files.

An attacker can exploit this issue by tricking an unsuspecting victim into opening a malicious file.

 A successful exploit will result  in the execution of arbitrary attacker-supplied code in the context of the currently logged-in user.

SIg ID: N/A

AV:

Bloodhound.Exploit.317

 

Sygate IDS:

N/A

CAN/CVE ID:

CVE-2010-0261

 

BID:

38552

 

Microsoft ID:

MS10-017

 

 

MSKB:

980150

 

Microsoft Rating:

Important

Microsoft Excel MDXSET Record Remote Heap Buffer Overflow Vulnerability

 

Remote Code Execution Vulnerability

 

This vulnerability affects the following products:

Microsoft Office Excel 2007 SP1 and SP2

Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2

A remote code execution vulnerability affects Excel when handling specially crafted Excel files.

 An attacker can exploit this issue by tricking an unsuspecting victim into opening a malicious file.

A successful exploit will result in the execution of arbitrary attacker-supplied code in the context of the currently logged-in user.

Sig ID: N/A

AV:

Bloodhound.Exploit.321

Sygate IDS:

N/A

CAN/CVE ID:

CVE-2010-0260

 

BID:

38551

 

Microsoft ID:

MS10-017

 

MSKB:

980150

 

Microsoft Rating:

Important

Microsoft Excel MDXTUPLE Record Remote Heap Buffer Overflow Vulnerability

 

Remote Code Execution Vulnerability

 

This vulnerability affects the following products:

Microsoft Office Excel 2007 SP1 and SP2

Microsoft Office Excel Viewer SP1 and SP2

Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2

A remote code execution vulnerability affects Excel when handling specially crafted Excel files.

 An attacker can exploit this issue by tricking an unsuspecting victim into opening a malicious file.

 A successful exploit will result in the execution of arbitrary attacker-supplied code in the context of the currently logged-in user.

Sig ID: N/A

AV:

Bloodhound.Exploit.320

 

Sygate IDS:

N/A

CAN/CVE ID:

CVE-2010-0258

 

BID:

38550

 

Microsoft ID:

MS10-017

 

MSKB:

980150

 

Microsoft Rating:

Important

Microsoft Excel Object Type Confusion Remote Code Execution Vulnerability

 

Remote Code Execution Vulnerability

 

This vulnerability affects the following products:

Microsoft Office Excel 2002 SP3

Microsoft Office Excel 2003 SP3

Microsoft Office Excel 2007 SP1 and SP2

Microsoft Office 2004 for Mac

Microsoft Office 2008 for Mac

Open XML File Format Converter for Mac

Microsoft Office Excel Viewer SP1 and SP2

Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2

A remote code execution vulnerability affects Excel when handling specially crafted Excel files.

 An attacker can exploit this issue by tricking an unsuspecting victim into opening a malicious file.

 A successful exploit will result in the execution of arbitrary attacker-supplied code in the context of the currently logged-in user.

Sig ID: N/A

AV:

N/A

 

Sygate IDS:

N/A

CAN/CVE ID:

CVE-2010-0257

 

BID:

38547

 

Microsoft ID:

MS10-017

 

MSKB:

980150

 

Microsoft Rating:

Important

Microsoft Excel Document Parsing (CVE-2010-0257) Remote Code Execution Vulnerability

 

Remote Code Execution Vulnerability

 

This vulnerability affects the following products:

Microsoft Office Excel 2002 SP3

A remote code execution vulnerability affects Excel when handling specially crafted Excel files.

An attacker can exploit this issue by tricking an unsuspecting victim into opening a malicious file.

 A successful exploit will result in the execution of arbitrary attacker-supplied code in the context of the currently logged-in user

Sig ID: N/A

AV:

N/A

 

Sygate IDS:

N/A

CAN/CVE ID:

CVE-2010-0265

 

BID:

38515

 

Microsoft ID:

MS10-016

 

MSKB:

975561

 

Microsoft Rating:

Important

Microsoft Windows Movie Maker '.mswmm' File Remote Code Execution Vulnerability

 

Remote Code Execution Vulnerability

 

This vulnerability affects the following products:

Microsoft Movie Maker 2.1, 2.6 and 6

Microsoft Producer 2003

A remote code execution vulnerability affects Movie Maker when processing specially crafted Movie Maker project files (‘.mswmm’).

An attacker can exploit this issue by tricking an unsuspecting victim into opening a malicious Movie Maker project file with the affected application.

A successful exploit will result in the execution of arbitrary attacker-supplied code in the context of the currently logged-in user.

Sig ID: N/A

AV:

N/A

 

Sygate IDS:

N/A

 

 

 

 

 

 




Legacy ID



2007010813564748


Article URL http://www.symantec.com/docs/TECH137301


Terms of use for this information are found in Legal Notices