Vulnerability is in the Spreadsheet ActiveX Control, used by Internet Explorer (IE) to display data in the browser. It is remotely exploitable when a person browses with IE and visits a malicious website. If successfully exploited, an attacker could gain the same user rights as the local user and gain complete control of a system. Babuk Locker s encryption mechanisms and abuse of Windows Restart Manager sets it apart, says Microsoft. Read the full story in our weekly Newsquiz.
Source: https://threatpost.com/new-flaw-microsoft-office-web-components-under-attack-071309/72911/