A new vulnerability in PowerPoint could allow remote code execution
PowerPoint flaw hits Mac and Windows
/v3-uk/news/2000152/powerpoint-flaw-hits-mac-windows
28 Sep 2006, Matt Chapman , V3
Microsoft has been hit by another major security problem following the discovery of a vulnerability in its PowerPoint software.
The unpatched PowerPoint flaw is believed to allow hackers to run malicious code, such as a worm, on both Windows and Apple Mac computers.
This fresh issue comes just two weeks after a major problem with the Vector Markup Language (VML) in Internet Explorer, which forced Microsoft to issue an early patch.
"It has been a bad few weeks for Microsoft on the security front," said Graham Cluley, senior technology consultant at Sophos.
"First it had to deal with a zero-day vulnerability in the way its products handle VML, then it discovers yet another problem with PowerPoint files."
Sophos warned computer users to be extra cautious when opening unsolicited files. The vulnerability is believed to affect Microsoft PowerPoint 2000/2002/2003, Microsoft PowerPoint 2004 for Mac, and Microsoft PowerPoint V.X for Mac.
"Hackers are showing increasing ingenuity in their attempts to break into innocent users' computers, and are always on the hunt for exploitable bugs in commonly used programs," said Cluley.
"PowerPoint is the standard business tool for presentations, underlining that all computer users need to show great caution when handling unsolicited email attachments."
In a similar incident in July 2006, Chinese hackers exploited a different PowerPoint flaw in order to install a key-logging Trojan horse.
© Incisive Media Investments Limited 2010, Published by Incisive Financial Publishing Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, are companies registered in England and Wales with company registration numbers 04252091 & 04252093
Do you agree?
Who uses Powerpoint anymore?
Keynote is so much more advanced.
Posted by Jp, 28 Sep 2006
More FUD
The article states, "The unpatched PowerPoint flaw is believed to allow hackers to run malicious code, such as a worm, on both Windows and Apple Mac computers."
The truth is that although the flaw may be there, a worm written to attack Windows will have no effect on the Mac OS. And since there is currently no known malware for the Mac OS, this flaw will have NO effect on the Mac, and to say so is just FUD.
Of course it is important to be careful when opening non-solicited email. And someday there probably will be malware for the Mac OS. So I'm not saying that Mac users shouldn't be careful.
But the implication that there is even one worm or malicious code aimed at the Mac OS is simply false and an attempt to spread fear among Mac users and placate Windows users, saying "See? Mac got problems, too."
Please stop spreading misinformation.
Posted by Don Kraig, 28 Sep 2006