Exploit code targets Microsoft flaw

By Shaun Nichols on Feb 19, 2008 8:10 AM
Filed under Security
 

A security researcher has posted code for an exploit targeting a component of Microsoft Office..

The vulnerability lies in a conversion tool used to convert Microsoft Works WPS files into Word RTF files The flaw could allow an attacker to remotely execute code on a user's system.

Microsoft repaired the vulnerability as part of its monthly security release on 12 February.

When the update was released Microsoft credited discovery of the flaw to iDefense, which in turn credited security researcher Damian Put.

Two days after the patch was released, a user by the name of 'chujwamwdupe' posted the sample exploit code to security site milw0rm.

The US Computer Emergency Response Teama urged users to protect against the vulnerability by installing Microsoft's most recent security update.

Copyright ©v3.co.uk


Exploit code targets Microsoft flaw
Tags
exploit, code, targets, microsoft, flaw
Related Articles
Breaking Stories
 
 
 
 
 
Top Stories
IT price probe to 'name and shame' gougers
IT price probe to 'name and shame' gougers
Industry ducking the issue, committee claims.
 
Revealed: 2012 e-government award winners
Revealed: 2012 e-government award winners
Government highlights projects, professionals of the year.
 
Westpac applies 'incubator' approach to mobile apps
Westpac applies 'incubator' approach to mobile apps
Adopts iterative, adaptive style of web 2.0 companies.
 
Sign up to receive iTnews email bulletins
   FOLLOW US...

Latest VideosSee all videos »

Latest Comments
Powered by Disqus
Polls
Should the Government enact new legislation to protect copyright holders in the digital age?
   |   View results
Yes
  19%
 
No
  81%
TOTAL VOTES: 467

Vote
view previous polls »