Ryan's take on a Word bug

[Dave Aitel <dave () immunityinc com>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

http://www.eweek.com/article2/0,1895,1965042,00.asp

A zero-day flaw in the ubiquitous Microsoft Word software program is
being used in an active exploit by sophisticated hackers in China and
Taiwan, according to warnings from anti-virus researchers.

Here's the clue SANS has: "report test file structure information
write into stack"

It's always possible the "Word" bug is really a PPT or Excel bug.
Wasn't someone selling a bunch of these sorts of bugs recently on
full-disclosure?

Now which AntiVirus company will have the first 3rd-party patch out! :>

- -dave
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org

iD8DBQFEbiTAB8JNm+PA+iURAgHnAJ9NhMWz3SIEiOiosr+Rh0K686iU2gCfXWea
Q0r4OQm0HxG2b5uXO9EAy6U=
=rX9w
-----END PGP SIGNATURE-----