Microsoft
Microsoft is warning of a new attack on Word

Microsoft warns of new Word attacks

Remote code flaw being exploited

Shaun Nichols in San Francisco

Microsoft has issued yet another security advisory in the wake of new attacks targeting Word.

The company said that it has received reports of attackers targeting a flaw in the handling of .doc files.

Advertisement

The attacks are not currently believed to be widespread, and the initial exploit attempts have been in specially targeted attacks.

The vulnerability could allow an attacker to use a specially-crafted document to cause a memory overflow error and application crash.

Such an error would then leave the system vulnerable and allow the attacker to remotely execute code.

Microsoft said that the vulnerability appears to exist only in Office Word 2002 Service Pack 3. No other versions of Word or Office appear to be at risk.

In addition to basic security practices such as enabling a firewall and antivirus software, Microsoft recommends that users exercise caution in loading mail attachments and avoid suspicious .doc files.

This is the second time this week that Microsoft has issued a patch for a vulnerability which is being actively exploited.

On Monday, the company issued a warning about a remote code execution attack which targets an ActiveX component in its Office Access software.

The announcement also comes just one day after Microsoft released the July edition of its monthly security update. That update was the first in almost three years to not contain a bulletin rated 'critical'.

The next security update is scheduled for 12 August, although Microsoft will often break from that schedule and release a patch early if attacks persist or w orsen.

  • Have your say
  • Send to a friend
  • Print
  • Digg
  • Reddit
  • Share

Do you agree?

Related whitepapers

Related jobs

Most watched

Social networking

Summit: How businesses should manage their brands online

In part one of V3.co.uk's interview with Dirk Singer, he dicusses social media monitoring strategies

RIM discusses new developer tools

Blackberry exec on the latest offerings for programmers

Analysis and Reports

Remote access - Three steps to getting connected

3.4 million UK professionals now work from home – is your company equipped?

Cost benefits of a global collaboration network

This white paper is a must read for organisations looking for evidence of the bottom-line benefits of high-definition video and voice communications

Poll

Impact of Information Overload poll

Impact of Information Overload poll

What is the biggest problem your firm faces as a result of the data explosion?

View poll results

Advertisement

White paper library

Keep up to date with the latest products, services and technologies from the world's leading IT companies; IThound.com brings you over 6,000 white papers, case studies and analyst reports.

Advertisement

Newsletter signup

Sign up for our range of FREE newsletters:

Existing User

Newsletter user login:

Enter email address to edit your newsletter preferences

Job of the week

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Hiring now on ComputingCareers:

Related IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Advertisement

Spotlight

simon perry

Comment: Information overload is a price worth paying if it helps the planet

Analyst Simon Perry argues that the data deluge doesn't have...

Summit: Views From the Valley

V3.co.uk's US office weighs in on the information overload crisis

money

Summit: Managing information overload in a recession

Balancing exploding data with shrinking budgets

Chambers outlines Cisco's corporate plans

CEO describes broader company focus

Primary Navigation