Microsoft Corporation issued a security bulletin this week regarding its Excel 97 spreadsheet product, which has a vulnerability that could allow certain programs to bypass the Excel's security subsystem and call an external program without warning the user. Microsoft has released a patch that fixes the problem.
There have not been any reports of customers being adversely affected by this problem. The patch is available from the Office Update web site.
For more information about the problem, please refer to Microsoft Knowledge Base (KB) article Q196791, "XL97: Patch Available for Excel CALL Vulnerability".