The patch, all items marked critical, is a big one for anyone running Microsoft Office 2003 or higher. According to the company’s March 2008 Security Bulletin, 12 security flaws are addressed that could impact anyone using the Office applications.
Excel is named one of the most serious in the bulletins, which alone has six specific vulnerabilities noted. To make matters worse, one of those security exposures has already been exploited and Microsoft warns that more computers will be affected if protective measures are not taken immediately.
Microsoft also admits to a network security vulnerability with the Office interface when connecting to the Internet. The software company has known about the significant concern since September 2006.
Microsoft warns that computers that are not patched will certainly run the risk of allowing an attacker to successfully exploit one of the vulnerabilities that could actively allow complete control of an affected system.