• Announcements

    • Budfred

      IE 11 copy/paste problem

      It has come to our attention that people using Internet Explorer 11 (IE 11) are having trouble with copy/paste to the forum. If you encounter this problem, using a different browser like Firefox or Chrome seems to get around the problem. We do not know what the problem is, but it seems to be specific to IE 11 and we are hopeful that Microsoft will eventually fix it.
Sign in to follow this  
Followers 0
AplusWebMaster

Office 2000 / OpenOffice zero-day flaws

1 post in this topic

FYI...

 

1) http://preview.tinyurl.com/39mf7a

24 May 2007 ~ ComputerWeekly - "Microsoft has confirmed Wednesday that it is looking into reports of a new Office zero-day flaw attackers could exploit to cause a denial of service or run malicious code on targeted Windows machines. Antivirus giant Symantec released an email advisory on the flaw to customers of its DeepSight threat management system early afternoon US time on 23 May. A couple hours later, a Microsoft spokesperson confirmed the company is investigating the report. At issue is a buffer overflow flaw in Office 2000's UA ActiveX control. Because of the flaw, the application fails to properly check user-supplied data before copying it into a poorly-sized buffer, Symantec said..." (Exploit code has been posted.) "...Symantec recommends users mitigate the threat by disabling ActiveX scripting in Internet Explorer, or set the kill bit on CLSID:8936033C-4A50-11D1-98A4-00A0C90F27C6."

 

2) http://isc.sans.org/diary.html?storyid=2847

Last Updated: 2007-05-24 ~ ISC - "A virus writer sent a proof-of-concept virus called BadBunny to Sophos that uses vulnerabilities in OpenOffice to infect Windows, Linux and Mac OS X. Depending on the host operating system, the virus will perform different actions to infect the target machine. In this case, it downloads a lewd image of a scantily clad woman and a dude in a big ol' bunny suit. It's not the first or last attempt at such cross-platform virus writing (or the inclusion of bizarre graphics in malware) but the limitation of seeing much of this cross-platform work lies in the fact that few applications are widely deployed and run on multiple operating systems..."

 

 

:(

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0