Microsoft Office Remote Code Execution Vulnerabilities (2720184)

Summary
This host is missing an important security update according to Microsoft Bulletin MS12-076.
Impact
Successful exploitation will allow attackers to execute arbitrary code with the privileges of the user running the affected application. Impact Level: System/Application
Solution
Run Windows Update and update the listed hotfixes or download and update mentioned hotfixes in the advisory from the below link, http://technet.microsoft.com/en-us/security/bulletin/ms12-076
Insight
- An error when processing the 'SerAuxErrBar' record can be exploited to cause a heap-based buffer overflow via a specially crafted file. - An input validation error can be exploited to corrupt memory via a specially crafted file. - A use-after-free error when processing the 'SST' record can be exploited via a specially crafted file. - An error when processing certain data structures can be exploited to cause a stack-based buffer overflow via a specially crafted file.
Affected
Microsoft Excel Viewer Microsoft Excel 2003 Service Pack 3 Microsoft Excel 2010 Service Pack 1 and prior Microsoft Office 2010 Service Pack 1 and prior Microsoft Excel 2007 Service Pack 2 and Service Pack 3 Microsoft Office 2007 Service Pack 2 and Service Pack 3 Microsoft Office Compatibility Pack Service Pack 2 and Service Pack 3
References