All the latest UK technology news, reviews and analysis
|
|
|
08 Oct 2001
Microsoft posted a warning to users last week that vulnerabilities in its Excel and PowerPoint office software could allow attackers to execute malicious code on a user's machine.
The vulnerability exists in the macro security framework, which basically scans a document for the presence of macros and asks a user if they want to run them.
The security measure was put in place because macros can be engineered to perform malicious actions. But a deliberately malformed macro can be inserted into a document, so that it bypasses the macro check and executes automatically.
The code could be written to perform any number of malicious actions on a victim's machine.
Microsoft also warned that the attack could come as a document sent via email, hosted on a website, or on a file share.
The vulnerability affects Microsoft Excel 2000 and 2002, and PowerPoint 2000 and 2002 for Windows and Mac, as well as Excel and PowerPoint 98 for Mac.
A patch is already available for vulnerable machines, here.
Latest stories from Security
Related articles
Related jobs
Poll
Are you confident that the UK's IT infrastructure is secure from attack in the wake of the Flame malware revelations?
Orange and Intel talk us through the ins and outs of their San Diego smartphone
Connect with V3.co.uk
Social networking is almost ubiquitous. This white paper examines the benefits and risks and it looks at the different ways companies can reconcile them
The importance of understanding your infrastructure
Are you looking for a new positing within the Testing...
A leading global provider of critical information to...
Want to work for one of the most dynamic, creative environments...
Want to work for one of the most dynamic, creative environments...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?