FILE-OFFICE -- Snort detected traffic targeting vulnerabilities in files belonging to the Microsoft Office suite of software (Excel, PowerPoint, Word, Visio, Access, Outlook, etc.).
FILE-OFFICE Microsoft Office Excel SxView heap overflow attempt
This rule will alert when an attacker leverages the usage of a maliciously crafted Excel file to cause a heap overflow vulnerability when the file is processed by Microsoft Excel
This event is generated when an attacker attempts to exploit a heap overflow vulnerability in Microsoft Office Excel.
No public information
No known false positives
Cisco Talos Intelligence Group
MITRE::ATT&CK Framework::Enterprise::Execution::User Execution::Malicious File
Buffer Overflow
Buffer Overflows occur when a memory location is filled past its expected boundaries. Computer attackers target systems without proper terminating conditions on buffers, which then write the additional information in other locations in memory, overwriting what is there. This could corrupt the data, making the system behave erratically or crash. The new information could include malicious executable code, which might be executed.
CVE-2010-0821 |
Loading description
|