New Microsoft Word Attack

Microsoft today issued a warning about a new, unpatched memory corruption error in its wordprocessing software, and said that it was investigating reports of "limited" attacks that exploit the problem.

The bug can be exploited by adding a string of characters in a Word file that can corrupt the PC's memory and allow the attacker to run unauthorized software on the system, Microsoft wrote in a security advisory. The bug affects many versions of the software, including Word 2000, 2002, and 2003, the Word Viewer 2003 and several versions of Microsoft Works. It is rated 'critical' by the FrSIRT Web site, which compiles a list of software vulnerabilities. Today @ PC World New Microsoft Word Attack

Linked by shanmuga Tuesday, 5th December 2006 11:43PM