A programming error in Microsoft Excel may allow a remote attacker to execute code on a vulnerable system via a specially crafted XLS file. Microsoft Security Advisory MS09-009: Several vulnerabilities in Microsoft Wordpad may allow an attacker to exploit a malformed file. A previously released rule identified with GID 3, SID 15365 will also detect attacks targeting this vulnerability. A vulnerability in the Microsoft SearchPath function may be exploited by a remote. attacker should the target system be using the Apple Safari browser.”]
Source: https://blog.talosintelligence.com/2009/04/microsoft-tuesday-coverage-for-april.html