Microsoft issues alert for Word zero-day booby-trapped RTF files already used in attacks

Microsoft has issued an emergency security alert about an in-the-wild exploitable vulnerability in Word. The vulnerability could allow remote code execution if a user opens a specially crafted RTF file using an affected version of Microsoft Word. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. This sounds surprisingly like two existing, well-known Word exploits that have been widely used over the past few years. These exploits are two and four years old respectively, and go by the tags CVE-2010-3333 and CVE-2012-0158.”]

Source: https://nakedsecurity.sophos.com/2014/03/25/microsoft-issues-patch-for-word-zero-day-booby-trapped-rtf-files-already-used-in-attacks/

Something Fresh

Zip Codes & PII: Are They Personal Data?

ZeroNet: 51% Attack Risks & Mitigation

Zero Knowledge Voting with Trusted Server

What People Reading

YubiKey Security: Initial Setup with Yubi Cloud

Zero-Day Vulnerabilities: User Defence Guide

Feedback and data-driven updates to Googles disclosure policy

ZAP: Brute Force Passwords

Security Insider Interview Series: John McArthur, Senior Product Manager, IP Intelligence; and Rupert Young, Senior Director Software Engineering, Data Compilation and Identity, Neustar

Categories

Partners

Just add here your partners image or promo text