Zero-day vulnerability in Microsoft Word under active attack

JMH

Emeritus, Contributor
Joined
Apr 2, 2012
Posts
7,197
Attackers are exploiting a newly discovered vulnerability in Microsoft Word that makes it possible to remotely seize control of computers, the company warned.

The in-the-wild attacks work by creating booby-trapped documents in the Rich Text Format (RTF) that exploit a vulnerability in the 2010 version of Microsoft Word, Microsoft warned in an advisory published Monday. Similar attacks work against other versions of Word, including 2003, 2007, and 2013 for Windows, Microsoft Office for Mac 2011, and multiple versions of Microsoft SharePoint Server. E-mails that are viewed or previewed using a default setting in Outlook allow the attacker to gain the same system privileges as the user who is currently logged in.
Zero-day vulnerability in Microsoft Word under active attack | Ars Technica
 

Has Sysnative Forums helped you? Please consider donating to help us support the site!

Back
Top