Security Alerts




Nasty RTFs Nudge Word Into Submission

Severity: High Summary: These vulnerabilities affect: Word (and Office) 2003 through 2010 for Windows (and related components) How an attacker exploits it: By enticing one of your users to open a malicious RTF document Impact: In the worst case, an attacker executes code on your user’s computer, gaining complete control of it What to do: Install Microsoft’s Word update as soon as possible, or let Microsoft’s automatic update do it for you Exposure: As part of today’s Patch Day, Microsoft released a security bulletin describing a serious security¬†vulnerability¬†in the Windows version of Word — part of Microsoft Office package. The flaw doesn’t affect the Mac versions, but does affect the Word viewer and Office Compatibility Packs. The vulnerability stems from an unspecified memory corruption fkaw having to do with how Word handles rich text format (RTF) documents.

Source:
Nasty RTFs Nudge Word Into Submission
December 11, 2012 — Category: Security Alerts