The host is installed with Microsoft Excel 2003 and is prone to remote code execution vulnerability. A flaw is present in the application, which fails to parse an office art object, when a malformed object is added to a linked list. The application explicitly trusts a function pointer of this object. Successful exploitation allows remote attackers to execute code under the context of the application.