Critical Vulnerability in Microsoft office
A critical vulnerability have been found in Microsoft office in the way they handle RTF by which an attacker can remotely execute arbitrary code on the victims computer. But attacks are still popping up in the wild, reports GCN. Even this attack has not been extensive so far, but there can be chances to increase in attacks since the sample of this exploit is publicly available on internet, reported by Microsoft. This exploit effects office XP and office 2003 SP3, office 2007 SP2. And office 2010 (both the 32-bit and 64-bit), and it is exploited using a crafted RTF file that holds a size parameter bigger than expected. Once inside the attacker may execute malicious shellcode, which then downloads other malware. After this the attacker may be able to get complete access over victims computer and attacker may be able to install programs, view files delete files etc, reported by Microsoft and the patch for this vulnerability will be available soon. But even if the computer is patched, the users are not completely safe. Since this flaw is present in office software, Outlook could also use to automatically load a similar modified RTF email message.
How to secure yourself from this exploit?
The answer is by setting up Outlook to read plain text formats and blocking the opening of RTF documents from unknown sources by using office File block.
Posted in: Microsoft Security Updates
Email This
BlogThis!
Share to Facebook
7:23 PM
Hackie Navneet
12 Visitor Reactions & Comments:
Gud one bro - keep posting gud articlez ........
nice info bro, and where it is used more
gud one ;)
ya sure and thanks and keep visiting for more :)
Nice. Keep posting and keep visiting too :)
Thank you Bro..But all will be interested to see this original article rather than to modified this.
Thanks for sending news letters with rich contents, i really appreciate for your best efforts.
@ Handsome ya bt the main motive of the article is to warn people wheather it is a main article or edited article. OK this is only a blog not a book :P
@Devil.. lolzzxx.....
but by ur this type of act amarjit will lose SEO of this site..i know this is a blog nt a book..bcz u guys are not even clever enough to write an article even...book to dur ki bat hai.
@Handsome DeviL is correct. It will make adverse affect. Better to save the article in draft so that we can do required changes accordingly. I have seen that guys are not even giving proper titles and not uploading proper pics. Such things are very critical in SEO.
OK then sorry i was wrong and i make a mistake to post here i will not post again here. OK
Post a Comment