Core Security Technologies Advisory – A vulnerability exists in MSO.DLL affecting Excel 9 (Office 2000) and Excel 10 (Office XP) in the code responsible for parsing OfficeArtSpgr (recType 0xF003) containers that allows an attacker to cause a class pointer to be interpreted incorrectly, leading to code execution in the context of the currently logged on user.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/86091/CORE-2009-0827.txt
Source: https://packetstormsecurity.com/files/86091/Core-Security-Technologies-Advisory-2009.0827.html