funsec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Microsoft Word 0-day Vulnerability (September) FAQ document available

From: Juha-Matti Laurio <juha-matti.laurio () netti fi>
Date: Wed, 6 Sep 2006 04:24:31 +0300 (EEST)
New information about the Microsoft Word zero-day vulnerability is available and FAQ document at 
http://blogs.securiteam.com/?p=586
has been updated.

This issue has been assigned to CVE-2006-4534, URL
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4534
will work in the near future.

There is information about file sizes of clipbook.exe and clipbook.dll dropped by the malicious Word document.

Word 2000 and Office 2000 are confirmed as affected.

There is information about the length of malicious file as well, it is three pages.

Several AV vendors have added detection.

All details are included to FAQ document and its Revision History.


- Juha-Matti
Juha-Matti Laurio <juha-matti.laurio () netti fi> kirjoitti: 

New FAQ document about the recently discovered 0-day vulnerability in Microsoft Word is available.
This vulnerability has been reported especially in Office 2000 on Windows 2000 machines.
Possible other Office versions are affected as well, however.

--clip--
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.
Previous By Date Next
Previous By Thread Next

Current thread: