1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: MS Excel SLK File Font Parsing CVE-2011-1276

Attack: MS Excel SLK File Font Parsing CVE-2011-1276

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.


This signature detects attempt to a remote code execution vulnerability in Microsoft Excel application while parsing specially crafted SLK files.

Additional Information

Microsoft Excel is a spreadsheet application that is part of the Microsoft Office suite.

Microsoft Excel is prone to a remote code-execution vulnerability. The problem occurs when parsing a font description in a SLK file.

Attackers can exploit this issue by enticing an unsuspecting user to open a specially crafted Excel file.

Successful exploits may allow attackers to execute arbitrary code with the privileges of the user running the affected application. Failed exploit attempts will likely result in a denial-of-service condition.


  • N/A


Vendor has issued an updated to fix this issue. Please visit the vendor's website for further details.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube