Computer Help Community

Community

Cyber Tech Help Community

New Tutorials

More Tutorials
PC Tutorials

New Downloads

More Downloads
PC Downloads

Member Testimonials

Open Member Quote   Just wanted to say THANKS to everyone at CTH. A Presbyterian pastor taught me that one can never say thank you enough and that everyone needs to pass it on when you hear it. Over the past two weeks I have read so much great information (so many posts...so little time) and picked up considerable knowledge. THANK YOU ALL! - uncleable  Close Member Quote
Member Testimonials
MY CYBER TECH HELP

LATEST TOPICS

Tech Help Community

Free Antivirus Scan

Free Virus Scan and a listing of the top 10 viruses in the wild - Free Antivirus Scan
Free Online Antivirus Scan

File Extension Database

Find what program a filetype belongs to in our searchable File Extension Database.
File Extension Database

Related Microsoft Links

Technet

Expert Zone Community
Services
Cyber Tech Help Community

To the top of the page to top

 



Symantec warns of new zero-day Word attack

Latest News Latest News | News ArchiveNews Archive | Cyber Tech Help News RSS Feed!

Symantec warns of new zero-day Word attackSymantec warns of new zero-day Word attack

Posted by: Tweaker
Date added: 20:30, 27th January 2007 GMT
Source: Computer World

Symantec

Hackers are exploiting a new, unpatched vulnerability in Microsoft Corp. Word that could allow them to take control of a victim's computer, Symantec Corp. has warned.

The zero-day vulnerability is the fourth in Microsoft's widely-used Word 2000 software that has not yet been patched, the security company said in its Security Response Weblog.

A zero-day vulnerability refers to a security hole for which exploits are already available when it was discovered. This latest one affects most versions of Windows running Word, Symantec's advisory said. Danish security vendor Secunia ApS also reported the vulnerability, and rated it as "extremely critical," its highest-level warning.

The attack comes via an infected Word document, a method increasingly used by hackers for targeted attacks. If the document is opened, it installs a Trojan horse program, called Trojan.Mdropper.W, onto the computer, Lau wrote. The Trojan also puts other files on a computer that enable a hacker to control it.

Microsoft could not be immediately reached for comment. The company released three sets of critical patches on Jan. 9, including ones for Outlook, PowerPoint and Windows, but not for Word.

Users can avoid trouble by not opening unexpected Word documents attached to e-mail. Hackers often spam thousands of messages with harmful attachments, such as Trojan horse programs, hoping unsuspecting victims will open them.

Trojans often look harmless and can quietly install themselves on a computer with no visible signs. The use of Word to mount an attack can be particularly effective since the file format is so widely used.

Tools:  Tools: Post a comment | Link to this news item | Send to a friend | Submit News

 

Post a commentPost a comment

Error: You are not logged in.

In order to leave comments to news articles you must be a Cyber Tech Help Member.

Registration is completely free!  Register to become a member!  Register to become a member

Along with access to leave comments to news articles you will be able to ask any computing questions you might have on the Cyber Tech Help Forums.

 

[ To the top of the page To top | Latest News Latest News | News Archive News Archive | Cyber Tech Help News RSS Feed! ]