Oops. You know, just when I thought that September was going to be different we find out that there is an “extremely critical” unspecified vuln in Microsoft Word. Sigh. From Secunia:
Description:
A vulnerability has been reported in Microsoft Word 2000, which can be exploited by malicious people to compromise a user’s system.The vulnerability is caused due to an unspecified error when processing Word documents. This can be exploited to execute arbitrary code when a malicious document is opened.
NOTE: The vulnerability is being actively exploited.
The vulnerability is reported in Microsoft Word 2000 running on Windows 2000. Other versions may also be affected.
Solution:
Do not open untrusted Office documents.Provided and/or discovered by:
Discovered in the wild as a 0-day.Other References:
Symantec:
http://www.symantec.com/enterprise/se…/09/new_tricks_with_old_software.html
It should be emphasized that this IS being exploited by nefarious ne’er do wells. This is a remote exploit. Just in time for school. Check out Star Office, Open Office or iWork to name a few. Be safe rather than sorry.
[tags]Microsoft Word Vulnerability, Word 2000 Exploit, Vulnerability, Exploit, Secunia[/tags]