VRT Advisories


VRT Tool 2007-02-12

Sourcefire VRT Tool Update

Date: 2007-02-12

Synopsis:

The Sourcefire VRT has updated the OfficeCat tool to provide coverage for Excel spreadsheets containing embedded flash object files (CVE-2006-3014).

Details:

CVE-2006-3014:
The OfficeCat tool has been updated to included detection for Excel spreadsheets that contain embedded shockwave flash objects. The embedded object when viewed with a vulnerable player, may allow a remote attacker to execute code on the machine in the context of the user viewing the file.

The OfficeCat tool is able to process Word, Excel and PowerPoint files and will return the appropriate reference information should possible exploit conditions be present in the document.

OfficeCat Tool Download:

Download zip archive here.

Usage Instructions:

  1. Unzip the archive
  2. Open a command shell
  3. Execute the tool executable with a document name for checking

About the VRT:

The Sourcefire VRT is a group of leading edge intrusion detection and prevention experts working to proactively discover, assess and respond to the latest trends in hacking activity, intrusion attempts and vulnerabilities.

About Sourcefire

Sourcefire, Inc., the world leader in intrusion prevention, is transforming the way organizations manage and minimize network security risks with its 3D Approach - Discover, Determine, Defend - to securing real networks in real-time. For more information about Sourcefire, please visit www.sourcefire.com.