XL97: Excel 97 SR-2 Macro Modification Security Update (MS01-050) (310363)


The information in this article applies to:

  • Microsoft Excel 97 for Windows Service Release 2 (SR-2)
This article was previously published under Q310363

SYMPTOMS

Microsoft has created a fix for Microsoft Excel 97 Service Release 2 (SR-2) that addresses a vulnerability that could allow malicious code to run in Excel files without warning.

Under normal circumstances, you receive a warning in Excel 97 when you open a document that contains macros. However, it is possible for a malicious user to modify the document in such a way that a macro can run without issuing a warning. This could cause damage to data, or allow unauthorized retrieval of data from your computer when you visit a Web site or open an e-mail message.

After you apply the fix in this article, a warning appears before any Excel file that contains macros is opened.

RESOLUTION

A supported hotfix is now available from Microsoft, but it is only intended to correct the problem that this article describes. Apply it only to systems that are experiencing this specific problem.

To resolve this problem, contact Microsoft Product Support Services to obtain the hotfix. For a complete list of Microsoft Product Support Services telephone numbers and information about support costs, visit the following Microsoft Web site:

http://support.microsoft.com/contactus/?ws=support

Note In special cases, charges that are ordinarily incurred for support calls may be canceled if a Microsoft Support Professional determines that a specific update will resolve your problem. The usual support costs will apply to additional support questions and issues that do not qualify for the specific update in question.



STATUS

Microsoft has confirmed that this is a problem in the Microsoft products that are listed at the beginning of this article.

MORE INFORMATION

Office 97 users should be aware that Office 97 was developed in an era when the security threat was very different, and Office 97 does not include any of the improved security architecture of more recent versions of Office, such as Macro and e-mail attachment security. For best security, we recommend that customers use Office XP.

For additional information about Microsoft recommendations to customers who are concerned with security issues in Microsoft Office 97, click the article number below to view the article in the Microsoft Knowledge Base:

310365 OFF97: Office 97 Macro Security Recommendations

Modification Type:MinorLast Reviewed:1/6/2006
Keywords:kbHotfixServer kbQFE kbbug kbfix kbOffice97preSR3fix kbQFE KB310363
©2004 Microsoft Corporation. All rights reserved.