Secunia Research has discovered a vulnerability in Microsoft Excel, which can be exploited by malicious people to potentially compromise a user’s system. The vulnerability is caused by a sign-extension error and integer overflow when processing a certain record type and can be exploited to cause a heap-based buffer overflow via a specially crafted Excel file. Successful exploitation may allow execution of arbitrary code. Microsoft Excel version 2002 SP3 is affected.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/94723/secunia-mserp.txt
Source: https://packetstormsecurity.com/files/94723/Microsoft-Excel-Record-Parsing-Integer-Overflow-Vulnerability.html