[Full-disclosure] Re: Microsoft confirmed Word 0-day vulnerability
Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]
sbradcpa at pacbell.net
Thu Sep 7 01:37:51 BST 2006
Better workaround is to upgrade.
If you see any attacks/web sites hosting files, please note the
locations and notify secure at microsoft.com
Juha-Matti Laurio wrote:
> This zero-day vulnerability and related attacks has been confirmed by
> Microsoft today. This issue affects to Word version 2000.
> It is also reported that Word Viewer application is not affected.
>
> As a workaround it is possible to avoid opening Word files from
> unrusted sources, including e-mail, Web pages, IMs etc.
> It is reported that these malicious Word files has been hosted on Web
> sites too.
>
> - Juha-Matti
>
>
--
Letting your vendors set your risk analysis these days?
http://www.threatcode.com
If you are a SBSer and you don't subscribe to the SBS Blog... man ... I will hunt you down...
http://blogs.technet.com/sbs
Full-Disclosure is hosted and sponsored by Secunia.