Could a BETANEWS editor update the title please?

It is now known that this is an old bug that was patched almost half a year ago.

http://news.com.com/2061-10789_3-6107998.html

Well, I suppose we could say it's better than a -1 day exploit. :)

Someday surfing will be like surfing and less like walking barefoot in a cow pasture.

.^

Someone stepped on a goatse link. ;P

.cx

heh

Not supposed to accept/open a binary file like Powerpoint or other Office documents from anyone without proper and adequate virus protection.

Trend Micro says this is not a 0-day exploit, but exploit an old flaw (MS06-012).

“This Trojan is not a zero-day exploit. It attempts to exploit the Microsoft Office Remote Code Execution Using a Malformed Routing Slip Vulnerability. It is seen that this Trojan has a similarity with other malware exploiting the said Vulnerability. Note that the shell code of the sample is actually located in the routing slip record. However, the shellcode does not manifest the said behavior.”

http://www.trendmicro.co...ROPPER%2EBH&VSect=T

According to Stephen Toulouse, a program manager in the MSRC (Microsoft Security Response Center), the vulnerability has already been resolved by an update.
"Our initial investigation is that this is not a new zero-day at all," Toulouse said in an e-mail exchange with eWEEK.

"In the meantime, Laurio stressed PowerPoint users should use caution when opening up files from outside sources until a fix is provided."

Or just open it in OpenOffice (etc), then you won't get infected*. :D

* - Disclaimer: I am not claiming OpenOffice (etc), are bug free, just that they do not share PowerPoint bugs and exploits, thus making any malformed PPT ineffective.

SO people should just hop back and forth between office versions as the one with the least 0-days is better off?

Smoke: me want it.

In general, people should not assume that OpenOffice is more secure. Here: http://news.com.com/Open...100-1002_3-6105176.html

Also, to quote a CNET security blog:
"Trend Micro has now run the sample of the Trojan horse through numerous tests and concluded that it doesn't work. "We can't get it to work on any version of Windows," Perry said."

OpenOffice.org has hit back at claims that the alternative office applications suite is riddled with security holes. Researchers at the French Ministry of Defense say that OpenOffice is subject to security weaknesses that make it at least as susceptible to computer viruses as the commercial, more widely used, Microsoft Office.

The French research paper, entitled an In-depth analysis of the viral threats with OpenOffice.org documents (PDF), looked at four proof-of-concept viruses and a variety of attack scenarios before concluding that the "general security of OpenOffice is insufficient," IDG reports. Among the risks highlighted were the possibility of creating malicious macros targeting OpenOffice documents.

"The viral hazard attached to OpenOffice.org is at least as high as that for the Microsoft Office suite, and even higher when considering some... aspects," the researchers, information security specialists at the French Ministry of Defense's Signal Corps, said. Their paper is due to be published Paris-based Journal in Computer Virology.

*yawn*

KABOOM, another zero-day exploit...

having fun in Microsux world? HAHAHA

...

It ain't news when it happens all the time.

BetaNews passes up ~real~ computer stories
to do stuff like this and articles on hybrid cars !

...

The Computer Rodent

...

People still use PowerPoint? Who knew!

Only managers (with too much time on their hands) as far as I know...

This is nice. Everytime I visit Betanews.

http://img520.imageshack...g520/6554/prompthy9.png

An ad image being served was password protected for some reason by one of the advertisers. They are fixing/have fixed it.

Cool deal.

Thanks. :)

Wow, another case of "Dont open stuff from people you dont know". If the exploit requires me to open a file from someone i dont know, then I am not worried at all about it.

As mentioned, it can "come" from someone you "do" know, so the advice is silly.

I think I've gotten about 1 powerpoint file from an external source in my life? the files really aren't e-mailed that often between companies/domains.

But you have to look at the powerpoint slide show going around with pictures from Tiger Woods' ocean-front house and the ruler of Dubai's palace. How can you resist? :)

If someone I know gets me infected then any further communications, via email, will be halted. Quite simple.