Microsoft Releases Security Advisory

["US-CERT" <US-CERT () ncas us-cert gov>]

NCCIC / US-CERT

National Cyber Awareness System:

Microsoft Releases Security Advisory [ 
https://www.us-cert.gov/ncas/current-activity/2014/03/25/Microsoft-Releases-Security-Advisory ] 03/25/2014 11:58 AM EDT 
Original release date: March 25, 2014

Microsoft has released a security advisory for Microsoft Word 2010. A vulnerability exists for remote code execution 
which could allow an attacker to gain user rights by opening a specifically crafted Rich Text Format file.

An update to the Microsoft Fix it solution will disable the opening of RTF content in Microsoft Word, preventing the 
exploitation of this vulnerability.

US-CERT recommends that users and administrators review Microsoft Security Advisory 2953095 [ 
http://technet.microsoft.com/en-us/security/advisory/2953095 ] and apply any necessary updates to help mitigate risk.

________________________________________________________________________

This product is provided subject to this Notification [ http://www.us-cert.gov/privacy/notification ] and this Privacy 
& Use [ http://www.us-cert.gov/privacy/ ] policy.

________________________________________________________________________

OTHER RESOURCES: Contact Us [ http://www.us-cert.gov/contact-us/ ] | Security Publications [ 
http://www.us-cert.gov/security-publications ] | Alerts and Tips [ http://www.us-cert.gov/ncas ] | Related Resources [ 
http://www.us-cert.gov/related-resources ] 

STAY CONNECTED: Sign up for email updates [ http://public.govdelivery.com/accounts/USDHSUSCERT/subscriber/new ]