Excel users have been warned that hackers are exploiting a vulnerability in several versions of the spreadsheet program.
Microsoft has revealed that the problem in Excel allows a hacker to create a malicious Excel document that when opened can compromise a computer. The vulnerability could allow remote code to be executed on a computer, which means a user risks having their personal data exposed.
Microsoft downplayed the risk, saying only targeted attacks have been seen. But since Microsoft Excel documents are commonly used for business, vulnerabilities such as this pose a greater risk.
"Users are familiar with the document being sent to them and are likely to open it," wrote security analyst Maarten Van Horenbeeck, in a commentary on the website for the SANS Internet Storm Center, which monitors internet threats.
The vulnerability is within the Microsoft Office Excel 2003 Service Pack 2, Microsoft Office Excel Viewer 2003, Microsoft Office Excel 2002, Microsoft Office Excel 2000 and the Mac version, Microsoft Excel 2004.
Those who have installed Office Service Pack 3, which includes updates for Excel as well as other products in the office productivity suite, are not affected, Microsoft said. That service pack was released last September.
Also not affected are Microsoft Office Excel 2007, Microsoft Office Excel 2007 Service Pack 1 and Microsoft Excel 2008 for the Mac.