Home > News > Technology > Security > Concern as Microsoft fails to patch PowerPoint flaw

Security

Concern as Microsoft fails to patch PowerPoint flaw

Concern as Microsoft fails to patch PowerPoint flaw

Related Articles

Microsoft plans to patch PowerPoint flaw

Microsoft rolls out Word patch

Microsoft warns of new flaw in IE

Attack on Google exploited Microsoft browser flaw

Breaking Stories

Vividwireless reveals five-city expansion plans

Microsoft denies Windows 7 battery problems

Ex-Intel executive owns up to insider trading

Optus to boost HFC network up to 100 Mbps

Microsoft launches Surface, unveils partners and customers

By Iain Thomson

Apr 22, 2009 3:07 PM

Tags: microsoft | powerpoint | flaw | rsa | patch

Security experts are expressing concern at Microsoft's failure to patch a flaw in PowerPoint that is already being exploited by malware writers.

The flaw is being used in attacks at the moment and many were expecting a patch at the last Patch Tuesday but to date there has been no sign of the fix.

“This PowerPoint exploit is in the wild right now,” said Graham Cluley, senior technology consultant at Sophos.

“It comes in the form of a presentation showing naked Japanese girls bathing in rockpools, or as an IQ test, to lure the user in. We're hoping Microsoft will patch this soon.”

He said that so far the exploit was being used in a targeted fashion but there was serious concern that it would be spammed out as part of a botnet recruitment drive.

The issue comes as more and more security experts are expressing concern at the levels of application vulnerabilities and the lack of patching and updating.

“It's a problem for IT departments as they are often stretched for resources and there are many applications to patch,” said Niels Henrik Rasmussen, founder of vulnerability researchers Secunia.

He pointed out that both his own research and the latest Microsoft Security Intelligence Report showed that application flaws were becoming a more important issue for security than operating system flaws.

Copyright © 2009 v3.co.uk

Send us your tips

Comments

Be the first to comment on this article.

Thoughts on this article? Add a comment below.

Comment:

Want to participate in the discussion?

Register for FREE

Or log in now to comment

IT Whitepapers

Top Categories

more technology whitepapers »

Latest Technology Jobs

more technology jobs »

Top Stories

TIO website hit by malware

Weekend malware runs one new process per target machine.

Microsoft announces Azure launch date

Australia in second wave of country releases.

CBA embarks on "database-as-a-service"

Analysis: How the bank intends to save megabucks.

Spotlightthe topics we're following

Latest Comments

"I only became aware of it when news arose that they were ditching it. Maybe it just wasn't ..."

on Commentary: Think B4 U waste our time and money

by Ace Feb 10, 2010 10:39 AM

"With Optus supposedly boosting this service sounds great, record profits on mobile business ..."

on Optus to boost HFC network up to 100 Mbps

by Johnnnny Feb 10, 2010 9:58 AM

"Digger and JL - the two biggest back-flippers in history. (Or are they they same person ?) Now ..."

on Exetel drops infringement policy after iiNet win

by marklara Feb 10, 2010 9:56 AM

"Once we get past cloud computing, it will be full speed ahead to blue sky computing - although ..."

on Opinion: Webjet brings 'cloud' claims back down to earth

by Ace Feb 10, 2010 9:52 AM

"Maxxi if your reading this I am pretty sure the opinion of Google far outweighs the minority ..."

on Google cold on voluntary YouTube filtering

by Mark D Feb 10, 2010 9:46 AM

Polls

What is the sweet spot for Apple's entry 16GB Wi-Fi iPad?

$549
$579
$619
$649
$699

| View results

$549

77%

$579

11%

$619

4%

$649

3%

$699

5%

TOTAL VOTES: 384

Vote

view previous polls »