Vulnerability in Microsoft Word
Microsoft Security Advisory (929433): Vulnerability in Microsoft Word Could Allow Remote Code Execution: Microsoft is investigating a new report of limited “zero-day” attacks using a vulnerability in Microsoft Word 2000, Microsoft Word 2002, Microsoft Office Word 2003, Microsoft Word Viewer 2003, Microsoft Word 2004 for Mac, and Microsoft Word 2004 v. X for Mac, as well as Microsoft Works 2004, 2005, and 2006.
Though I rarely use Word myself, this is a MS flaw worth noting since it affects Mac as well as PC. As always — use extreme caution when you receive email with an attachment of any kind that you weren’t expecting, or even if you were expecting it.
If there’s ever any doubt in you mind about an email attachment, I highly recommend using ClamXav to scan your mail directory (~/Library/Mail) for any nasties — though I’m not entirely sure if ClamX would catch this one or not.
I’ll be putting up an in-depth ClamXav usage tutorial in the near future for those who aren’t familiar with it.
Leave a Reply of Your Own