Cable Forum

Cable Forum (https://www.cableforum.uk/board/index.php)
-   Security & Virus Discussion (https://www.cableforum.uk/board/forumdisplay.php?f=38)
-   -   Microsoft Office Unspecified String Handling Vulnerability (https://www.cableforum.uk/board/showthread.php?t=33607379)

pedantic 04-02-2007 11:54
Microsoft Office Unspecified String Handling Vulnerability
 
Linky

Quote:
Critical: Extremely critical
Impact: System access
Where: From remote
Solution Status: Unpatched
Quote:
A vulnerability has been reported in Microsoft Office, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an unspecified error when handling strings and can be exploited to cause a memory corruption.

Successful exploitation allows execution of arbitary code.

NOTE: According to Microsoft, the vulnerability is currently being actively exploited via Excel, but other Office applications may also be affected.

Solution:
Do not open untrusted Office documents

Nikesh 04-02-2007 11:56
Re: Microsoft Office Unspecified String Handling Vulnerability
 
It's a good job I upgraded to Office 2007. :)

Graham M 04-02-2007 12:03
Re: Microsoft Office Unspecified String Handling Vulnerability
 
Quote:
Originally Posted by Nikesh (Post 34212651)
It's a good job I upgraded to Office 2007. :)
It doesn't say that it doesn't affect that does it?

MadGamer 04-02-2007 12:31
Re: Microsoft Office Unspecified String Handling Vulnerability
 
When are the going to release fixes for these vulnerabilities? They all seem to be occuring too often lately.

Nikesh 04-02-2007 13:25
Re: Microsoft Office Unspecified String Handling Vulnerability
 
Quote:
Originally Posted by Zeph (Post 34212655)
It doesn't say that it doesn't affect that does it?
Well, Office 2007 isn't in the list so I'm hoping it doesn't affect it.


All times are GMT +1. The time now is 12:07.

Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2026, vBulletin Solutions Inc.
All Posts and Content are © Cable Forum