Cable Forum

Cable Forum (https://www.cableforum.uk/board/index.php)
-   Security & Virus Discussion (https://www.cableforum.uk/board/forumdisplay.php?f=38)
-   -   2 alerts from Secunia (https://www.cableforum.uk/board/showthread.php?t=53116)

pedantic 28-09-2006 10:59
2 alerts from Secunia
 
Heads Up.......

After the last IE vulnerability, there's another publshed at Secunia.

Quote:
Solution:
Only allow trusted websites to run ActiveX controls
Also a Powerpoint Vulnerability, here

Quote:
Solution:
Do not open untrusted Office documents

Paul K 28-09-2006 11:29
Re: 2 alerts from Secunia
 
Quote:
Do not open untrusted Office documents
Wonder how long it took someone to think of that :erm: the biggest problem with virus infestations is the idiots that open attachments from people they do not know :(

Aragorn 28-09-2006 14:57
Re: 2 alerts from Secunia
 
That powerpoint one has huge potentially - how often do you get a ppt/pps file from a friend showing 'funny pictures'. I doubt many 'average joe users' would think twice about opening them.

Paul K 28-09-2006 14:59
Re: 2 alerts from Secunia
 
Trouble is that "average Joe" users aren't told by their ISPs how important up-to-date anti-virus tools are :(

ADd 28-09-2006 15:17
Re: 2 alerts from Secunia
 
Info from M$

http://www.microsoft.com/technet/sec...ry/925984.mspx
Quote:
Microsoft Security Advisory (925984)
Vulnerability in PowerPoint Could Allow Remote Code Execution
Published: September 27, 2006

Microsoft is investigating new public reports of limited “zero-day” attacks using a vulnerability in Microsoft PowerPoint 2000, Microsoft PowerPoint 2002, Microsoft Office PowerPoint 2003, Microsoft PowerPoint 2004 for Mac, and Microsoft PowerPoint v. X for Mac.

In order for this attack to be carried out, a user must first open a malicious PowerPoint file attached to an e-mail or otherwise provided to them by an attacker.

As a best practice, users should always exercise extreme caution when opening unsolicited attachments from both known and unknown sources. Microsoft has added detection to the Windows Live OneCare safety scanner for up-to-date removal of malicious software that attempts to exploit this vulnerability.

Microsoft is also actively sharing information with Microsoft Security Response Alliance partners so that their detection can be up to date to detect and remove attacks.

Customers in the U.S. and Canada who believe they are affected can receive technical support from Microsoft Product Support Services at 1-866-PCSAFETY. There is no charge for support calls that are associated with security updates.

International customers can receive support from their local Microsoft subsidiaries. There is no charge for support that is associated with security updates. For more information about how to contact Microsoft for support issues, visit the International Support Web site.

Upon completion of this investigation, Microsoft will take the appropriate action to help protect our customers. This may include providing a security update through our monthly release process or providing an out-of-cycle security update, depending on customer needs.
Seems Mac user might not be safe :(


All times are GMT +1. The time now is 00:29.

Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2025, vBulletin Solutions Inc.
All Posts and Content are © Cable Forum