All the latest UK technology news, reviews and analysis

Microsoft issues PowerPoint security alert

by Dave Neal

More from this author

03 Apr 2009

Be the first to comment

  • Tweet this
PowerPoint
A PowerPoint flaw is already being exploited by hackers

Microsoft has warned of a vulnerability in PowerPoint that could enable a hacker to gain remote control of a PC.

A security advisory from the company offers advice on how to guard against the exploit, and said that attacks have already been seen in the wild.

Further reading

"Microsoft is investigating new reports of a vulnerability in Microsoft Office PowerPoint that could allow remote code execution if a user opens a specially crafted PowerPoint file. At this time, we are aware only of limited and targeted attacks that attempt to use this vulnerability."

The warning should also serve as a reminder to office workers to not blindly open attachments. The nature of the vulnerability means that an attacker would have to convince users to visit a particular web site, and then persuade them to open the specially-crafted PowerPoint file.

Microsoft reminded companies that the enabler for many such attacks is often the human element.

"The vulnerability cannot be exploited automatically through email. For an attack to be successful a user must open an attachment that is sent in an email message," the security alert said.

Microsoft hinted at the possibility of a patch, suggesting that it could be included in its regular Patch Tuesday release, or as an out of cycle release, depending on customer needs.

In the meantime Microsoft offered a few workarounds. "Do not open or save Office files that you receive from un-trusted sources, or that are received unexpectedly from trusted sources," the firm warned.

Do you agree?

Add your comment
 

Add your comment

We won't publish your address
By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.
Submit your comment

Latest stories from Security

phishing-credit-card

Google moves to calm fears of Wallet attacks

Related white papers

Related articles

Related jobs

Today's top stories

ACTA protests took place across the globe

EP president condemns ACTA treaty as citizens protest across the globe

Google logo

Security patches cost Google $410,000 in finder's fees

Apple iPhone 4S

Apple stocks pass $500 as firm's financial success continues

Poll

IT priorities for 2012

What is the most important IT priority for your company this year?

99%

0%

1%

0%

0%

Features

V3 and The INQUIRER editor Madeline Bennett

BBC and Sky News show tough love with Twitter policies

V3's Rosalie Marshall

World indulges in a Facebook facts fest as firm prepares to float

facebook-new

Top five most interesting figures from Facebook’s IPO

Khidr headshot

Intel will prove Steve Jobs wrong in the mobile market

More features

Connect with V3.co.uk

Sign up to our daily or weekly newsletters

Case studies and reports

Accurev

Top 5 software development challenges

This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes

Talend

Rubbish in, rubbish enterprise

Why good data management at all levels is essential in the modern business (video, 6mins)

Technology jobs

solution architect

Solution Architect / Technical Project Manager / Corporate...

Administrator - Global Corporate Actions

Tier 1 Investment Bank seeks an Administrator with an...

Agile Test Engineer, Leeds, Up to £38k

Are you a proven agile test engineer that wants to work...

Lead Project Planner

A leading global organisation seeks a Lead Project Planner...

To send to more than one email address, simply separate each address with a comma.