Another Microsoft Office Vulnerability



Hot on the heels of the Microsoft Word patch there’s a new threat to Microsoft Office. This vulnerability is with Excel documents. According to the MS security response center blog, they’ve received one report of a system being attacked by a previously unknown vulnerability in Excel. The moral of the story is to be suspicious of any attachments, be they programs, or claim to be images, word documents, excel documents, fluffy bunnies or what…. If you weren’t expecting an attachment in email wait and find out if it’s legit through other channels.


What’s really mind boggling about this is HOW MANY vulnerabilities there are that are known about by a select few and those select few have been “trafficking” in the market of undisclosed vulnerabilities or just taking advantage of them for their own use. I remember last fall there was an ebay auction for a claimed undisclosed Excel vulnerability. The reality is that it’s likely there are MANY vulnerabilities that have been found and never reported to Microsoft or publicly announced. (Other vendors as well.)

The best defence is to be suspicious of attachments and to always be cautious.

Related Posts

Blog Traffic Exchange Related Posts
  • How Microsoft could patch VML vulnerability before October's patch day SO, there's the second big vulnerability exploit for Internet Explorer making the rounds in about a week and Microsoft's advisory says that the most recent flaw will likely be patched on October's patch day ("unless the need arises...") So, what would trigger that need? Lot's of browsers being subjected to......
  • Update on the Internet Explorer VML vulnerability Just catching up on the days VML vulnerability news from today.... It looks as though... the exploit is now MUCH more widespread this blog has some video of an infection, what's notable is that the first take was VERY UNEVENTFUL, it was used to stealthily install a keylogger. (So that......
  • Microsoft vulnerability whack-a-mole continues..... Translation - Microsoft patched one vulnerability another surfaces.... Incidents.org brings us the frustrating news.... If you remember the month of browser bugs series of exploits back in July, there was a denial of service there that appears to have code execution after all. Coincidence or not, it got publicly released......
Blog Traffic Exchange Related Websites
  • How To Make Money From Technology Blog ? There are lot of technology blogs available in Internet and looks like every single blogger is owning a tech blog. Even i too have a technology blog (i won't share here as of now) and there is a huge demand for information always. Not every tech blog becomes success and......
  • What ROI Unlimited Exactly Is In fact, all members of ROI Unlimited certainly receive all following points to help them with starting a quite successful internet business. First of all, we will talk about your own site. Thus there is no need to build or design your site, because you actually get a fully functional......
  • Review of Sprout Builder When Sprout Builder was first released in beta, this drag and drop Flash authoring widget building environment was immediately on fire. Although there was not much wrong with the original Sprout Builder, they have recently released a much more sophisticated version of their flash building services today. The new Software......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site