funsec mailing list archives

Previous By Date Next
Previous By Thread Next

Microsoft Word 0-day Vulnerability (September) FAQ document available

From: Juha-Matti Laurio <juha-matti.laurio () netti fi>
Date: Tue, 5 Sep 2006 03:23:29 +0300 (EEST)
New FAQ document about the recently discovered 0-day vulnerability in Microsoft Word is available.
This vulnerability has been reported especially in Office 2000 on Windows 2000 machines.
Possible other Office versions are affected as well, however.

This vulnerability is being exploited by Trojan from Mdropper family, but the newest information states dependencies to 
Mofei worm
(reported in the wild in 2003 already).
Names as W32/MoFei.worm, W32.Femot.Worm etc. has been assigned.

The document entitled as Microsoft Word 0-day Vulnerability FAQ - September 2006, CVE-2006-xxxx is located at my 
SecuriTeam Blogs section,
http://blogs.securiteam.com/?p=586

The CVE name will be added to the document when it is available.
And the document will be updated frequently.

- Juha-Matti
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.
Previous By Date Next
Previous By Thread Next

Current thread: