[Full-disclosure] 2x 0day Microsoft Windows Excel
Georgi Guninski
guninski at guninski.com
Sun Jan 8 18:40:40 GMT 2006
will there be a chance of bidding on something more reliable than ebay?
--
where do you want bill gates to go today?
On Sun, Jan 08, 2006 at 04:10:16PM +0100, ad at heapoverflow.com wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> after many hours working on excel I have found a
> critical excel bug exploitable. This is not a stack bof
> nor a heap bof , a bug extremely hard to find and trigger , but it
> conduct excel to execute any arbitrary codes while opening a malicious
> .xls file.
>
> note: the bug isn't related to both excel dos that I have already
> published but shows similiar to a null pointer bug at a first look.
> much infos won't be disclosed publicly or privately and this will be
> transmitted to ms before the spyware loosers catch it :)
>
Full-Disclosure is hosted and sponsored by Secunia.