Blogs

  • Browse Blogs
  • My Blog
  • My Updates

Tags Help

  • View as cloud  | list

Similar Entries

photo

Lotus Symphony comme...

Blog:  Martin's Blog
Martin Meijer
Updated 
No Ratings 0     No Comments 0
photo

Microsoft Fights Bac...

Blog:  Write it on a...
David Jones
Updated 
No Ratings 0     No Comments 0
photo

Why Executives Prefe...

Blog:  off the Hook
Scott Hooks
Updated 
No Ratings 0     Comments 7
photo

How Ubiquitous is IE...

Blog:  off the Hook
Scott Hooks
Updated 
No Ratings 0     Comments 4
photo

Please Check Your Fa...

Blog:  Big A** Mutan...
Michael Smelser
Updated 
No Ratings 0     Comments 3

Dogear Bookmarks

Archive

FlowerPower

Blog Authors:  James T Kork  

Previous |  Main  | Next

Word is leaking code again.... If you do not use symphonie but the Evil Productivity software you are probably having problems with being the target of hackers.....

James T Kork  |    |  Tags:  symphony microsoft word  |  Comments (0)
 Word is leaking code again.... If you do not use symphonie but the Evil Productivity software you are probably having problems with being the target of hackers.....
If you do own one of the programs below you might be subject of forgery  ......
SO USE IBM SYMPHONY... ITS FREE and it comes with your Notes 8 client or as a seperate download
  • Word 2000 Service Pack 3
  • Word 2002 Service Pack 3
  • Word 2003 Service Pack 2 oder 3
  • Word 2007 mit oder ohne Service Pack 1
EVIL Empire is talking of very limited attacks.... yeah sure....
Microsoft is investigating new public reports of very limited, targeted attacks using a vulnerability in the Microsoft Jet Database Engine that can be exploited through Microsoft Word.

MS is investigating and take appropriate action (i wonder how much that would be) :-)

Microsoft is investigating the public reports and customer impact. We are also investigating whether the vulnerability can be exploited through additional applications. Upon completion of this investigation, Microsoft will take the appropriate action to help protect our customers. This may include providing a security update through our monthly release process or providing an out-of-cycle security update, depending on customer needs.

And the scenario is sooooooo very seldom an limited... hmmmmm i guess it would be worth some studies on what the definition on limited is.....

In a Web-based attack scenario, an attacker would have to host a Web site that contains a specially crafted Word file that is used to attempt to exploit this vulnerability. In addition, compromised Web sites and Web sites that accept or host user-provided content could contain specially crafted content that could exploit this vulnerability. An attacker would have no way to force users to visit these Web sites. Instead, an attacker would have to persuade users to visit the Web site, typically by getting them to click a link in an e-mail message or Instant Messenger message that takes users to the attacker's site.

heise online - Word führt fremden Code aus
Microsoft Security Advisory (950627): Vulnerability in Microsoft Jet Database Engine (Jet) Could Allow Remote Code Execution

Technorati Tags: , ,

Comments

Previous |  Main  | Next
Skip to main content link. Accesskey S
IBM Lotus Connections Help Tools About

Tags

A tag is a keyword that is used to categorize an entry. To view the entries with a particular tag, click a tag name or enter a tag in the box.
The tag cloud indicates the frequency of tag use. Popular tags appear darkest. The slider control adjusts how many tags are displayed in the tag cloud.