Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Microsoft Word 0-day Vulnerability (September) FAQ document available

From: Juha-Matti Laurio <juha-matti.laurio () netti fi>
Date: Wed, 6 Sep 2006 04:16:58 +0300 (EEST)
New information about the Microsoft Word zero-day vulnerability is available and FAQ document at http://blogs.securiteam.com/?p=586 
has been updated.

This issue has been assigned to CVE-2006-4534, URL
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4534
will work in the near future.
There is information about file sizes of clipbook.exe and clipbook.dll dropped by the malicious Word document. 

Word 2000 and Office 2000 are confirmed as affected.

There is information about the length of malicious file as well, it is three pages.

Several AV vendors have added detection.

All details are included to FAQ document and its Revision History.


- Juha-Matti

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: