Microsoft warns of new Word attacks

Microsoft has issued yet another security advisory in the wake of attacks targeting Word. The company said in the advisory that it has received reports of attackers targeting a flaw in the handling of .doc files. The attacks are not currently believed to be widespread, and the initial exploit attempts have been in specially targeted attacks.

The vulnerability lies in the way Word 2002 Service Pack 3 handles .doc files. An attacker could use a specially-crafted document to cause a memory overflow error and application crash. The error would then leave the system vulnerable and allow the attacker to remotely execute code on the target system. Microsoft said that the vulnerability only appears to exist in Office Word 2002 Service Pack 3. No other versions of Word or Office appear to be at risk for attack.

In addition to basic security practices such as enabling a firewall and antivirus software, Microsoft recommends that users exercise caution in loading mail attachments and avoid suspicious .doc files.

View: The full story @ vnunet

Report a problem with article
Previous Story

Nominet changes fail to cut main cost of domain name disput

Next Story

It's the End for 3.11!

10 Comments

So I'm guessing this just affects that one version of MS Word and not other software, like OpenOffice, that can open/save Word docs..?

(bucko said @ #2)
openoffice ftw!

You say that now, but watch, someday OpenOffice will be found to have hundreds of security flaws also... just like every other piece of software out there

(bucko said @ #2)
openoffice ftw!
I like Open Source (and am even a 100% Linux user for approaching 6 years), but I just gotta say:

trolling ftl!

(neufuse said @ #2.2)

You say that now, but watch, someday OpenOffice will be found to have hundreds of security flaws also... just like every other piece of software out there :rolleyes:

stfu! openoffice is so leeter than ms office noob :P

Every piece of software released in the modern age of computing has had and does have and always will have flaws in it. There's just no getting around it. The difference with OpenOffice is that it's FREE!

Commenting is disabled on this article.