Security News

Zero-day vulnerability in PowerPoint spawns Microsoft alert

By Angela Gunn | Published April 3, 2009, 5:07 AM

Ah, the life of a security reporter: You ask Microsoft's communcations managers if the new PowerPoint vulnerability announced Thursday evening is a zero-day vulnerability, currently being exploited in the wild with no patch to shield us, and a spokesperson responds that "At this time, Microsoft is only aware of limited and targeted attacks that attempt to use this vulnerability." In other words, yes.

Security Advisory 969136 describes the new problem as one that can allow remote code execution if the file recipient opens an infected file. The Microsoft Security Research & Defense blog is rather more useful (not to mention straightforward -- yes, they're seeing it out in the wild, used in targeted attacks), recommending several defensive maneuvers while we await a patch. Those include using PowerPoint's newer version of XML, temporarily disabling the binary file format if your organization's using PPTX, and forcing legacy PowerPoint files to open in MOICE. Bloggers Bruce Dang and Jonathan Ness note that this is the first time Office 2003 SP3 (fully patched) has been successfully attacked in the wild since its release in September 2007.

Comments

View comments by with a score of at least

extremely well
Apr 4, 2009 - 3:30 PM

One key piece of info missing in this report is: this exploit does not affect PowerPoint 2007...

Also, it should really state "SP3 for Office 2003 .. which has been released in Sep 2007". It puzzled me for approx 7.2 seconds that "Office 2003 SP3 has been released in 2007". C'mon, who bought Office 2003 in 2007... 99% bought Office 2003 earlier (no SP3) or bought Office 2007 when it was out...

Score: 1

|
Post Reply
extremely well
Apr 4, 2009 - 3:35 PM

Hehehe strange score system we've got here. I was able to mod myself up (should not be allowed), but the stranger thing is when I modded myself down it ignored it! hehehehehe I guess the system (and we all know computers are NEVER wrong) refused to deny my greatness.

j/k ;)

Score: 0

|
Post Reply
extremely well
Apr 4, 2009 - 3:38 PM edited

"Ahh I C" said the blind man. Sys simply doesn't let you CHANGE YOUR MIND. (Or probably more technically precise - REVOTE).

Score: 0

|
Post Reply
Angela Gunn
Apr 6, 2009 - 3:19 AM

Alas, our system is not Chicago-style -- just obstinate. (And believe me, I share your frustration, though on the whole I just wish the ratings system meant... something. Anything.)

Score: 0

|
Post Reply

Google Chrome 4: Yes, it's fast, but is it usable?

As Betanews readers have responded to our stories about Chrome's JavaScript superiority...Does that mean we'd actually use this browser? Well...

Video: Netflix on PlayStation 3

Netflix has come to the PlayStation 3 via Blu-ray and BD-Live.

Verizon Wireless launches new Android, Chocolate, and ruggedized phones

The lower-priced Eris joins the Droid, while the Chocolate gets a touchscreen and more music playback.

Early sales figures for Windows 7 nicely high, but do we know why?

Fans of triple-digit surges in figures quoted by Betanews will love this one, as it appears Microsoft rediscovered how to pull off a software launch.

Myka announces its latest Linux-based 'net top box'

Myka's ION brings Boxee, XMBC, and much more to HDTVs.

What hath Mac wrought? A remembrance after a quarter-century

The reason there's a Macintosh today is not because of some brilliant flash of engineering genius, but because Apple had the audacity to learn from its mistakes.

Early build of Moblin 2.1 improves connectivity, but not device support

The Linux Foundation's Atom-centric OS yesterday received a major overhaul with the project release of Moblin 2.1 for netbooks and nettops.

The iPhone's China syndrome: Sales of 5,000 and climbing

There's actually a country where Apple's device is not a godsend, where sales can be measured in the dozens.

New European counterpart to FCC will ensure 'a more neutral net'

Late Thursday night, the ruling telecom administrators of the EU's member nations signed away their final authority to a new entity overseen by the EC.

Sophos study suggests Windows 7 UAC's default setting is self-defeating

Without any anti-virus installed, a Sophos test showed, User Account Control was only capable of thwarting just one malware package out of ten samples chosen.

Indiscreet tweet trips awareness of Web SSL vulnerability

A group of high-level security engineers had been making progress on thwarting a low-level threat to the Web, until somebody blurted it all out on Twitter.