Microsoft reveals zero-day attacks against Word | Larry Seltzer ZDNet 2014-03-24 - 0 views
-
Claude Almansi on 25 Mar 14"By Larry Seltzer for Zero Day | March 24, 2014 -- 19:16 GMT (12:16 PDT) Microsoft announced today that an unpatched vulnerability in Microsoft Word is being exploited in the wild. All versions of Microsoft Word, both Mac and Windows, and several related programs like the Word Viewer and Word Automation Services on Microsoft SharePoint Server are also vulnerable, but the current attacks are directed at Microsoft Word 2010. Exploits such as these are often version-specific, and in targeted attacks, such as this appears to be, the attacker may already know which version he needs to exploit. Microsoft also says that Microsoft Outlook could also be exploited with such an RTF file if Word were set as the viewer for Outlook. In the default configuration Word is the viewer in Outlook 2007, 2010 and 2013."