Slashdot is powered by your submissions, so send in your scoop

 


Forgot your password?
Close
typodupeerror
×
Security Microsoft

No Patch For Excel Zero-Day Flaw 52

Posted by timothy from the excel-lent dept.
CWmike writes "Microsoft said today that it will deliver three security updates on Tuesday, one of them marked 'critical,' but will not fix an Excel flaw that attackers are now exploiting. 'It doesn't look like we're going to see patches for any open Microsoft security advisories,' said Andrew Storms, director of security operations at nCircle Network Security, pointing to three that have not yet been closed. Those include two advisories issued last year — one from April 2008, another from December — and the Excel alert published last week. 'I'm not really surprised that the Excel vulnerability won't be patched, what with the timeline,' said Storms, 'but the others have been open for a long time.'"
This discussion has been archived. No new comments can be posted.

No Patch For Excel Zero-Day Flaw More

No Patch For Excel Zero-Day Flaw

Comments Filter:

  • The problem with excel: being mission critical (Score:5, Insightful)

    by Slumdog ( 1460213 ) on Thursday March 05, 2009 @05:22PM (#27082669)
    OK, you may disagree, but I've worked at banks and found that Excel use is widespread in mission critical applications, research, trading, and what not. Its like the swiss army knife for non-programmers engaged in decision making. They don't care about security issues (really, they wouldn't know if there was a security issue in any app until Legal departments tell them)

    The philosophy for these situations is, 'if its not broken, don't fix it'. As long as Excel remains usable for corporate clients, upgrades and bug fixes will trickle is a slow rate.

  • Re:The problem with excel: being mission critical (Score:5, Insightful)

    by morgan_greywolf ( 835522 ) on Thursday March 05, 2009 @05:48PM (#27083011) Homepage Journal

    Yeah. Decision makers at banks have proved themselves to really intelligent lately, huh?

  • Re:How does this affect us? (Score:1, Insightful)

    by Anonymous Coward on Thursday March 05, 2009 @05:52PM (#27083099)

    If you don't even know that corporations still use it, why would I trust your advice? You're obviously stupid.

    I love Linux and Open Source, but posts like this really piss me off.

  • Re:The problem with excel: being mission critical (Score:3, Insightful)

    by mcgrew ( 92797 ) * on Friday March 06, 2009 @12:21PM (#27092363) Homepage Journal

    Considering how powerful spreadsheets (not just Excel) have been for decades, why would anyone open a spreadsheet from an untrusted source? Maybe I should RTFA, but this seems dumb.

    All of them I know of (am I out of date on this?) can open files, etc. Seems to ma a spreadsheet should do math and formatting -- and nothing else.

    Ironically, at work I get spreadsheets all the time; I have to convert between Lotus, Excel, and Quattro. I usually send a PDF as well, and more irony here; isn't there an Adobe vuln too?

    I use Star Office at home, but don't have the need for a spreadheet there. How does Star's spreadsheet fare?

Slashdot Top Deals

He has not acquired a fortune; the fortune has acquired him. -- Bion

Close