News

Zero-Day PowerPoint Exploit Surfaces

By Nate Mook | Published July 13, 2006, 4:26 PM

Symantec on Wednesday issued an advisory about a new trojan that takes advantage of an undocumented vulnerability in PowerPoint to infect a victim's computer with a backdoor. The malware, dubbed Trojan.PPDropper.B, uses a malformed string to execute code and modify EXPLORER.EXE.

While Symantec only gives PPDropper.B a risk level of "Very Low," Sunbelt Software CEO Alex Eckelberry notes that the attack looks more intended for corporate espionage than causing widespread damage. The trojan is currently being spread via e-mail, with a subject containing Chinese characters.

Comments

View comments by with a score of at least

Spyderloco
Jul 14, 2006 - 8:53 PM

I got a fever...and the only thing that's gonna cure it is.....

.....more cowbell!

Score: 0

|
Post Reply
mjm01010101
Jul 14, 2006 - 2:37 PM

This is now approaching critical mass. Unlike the previous zero days, there are few workarounds other than blocking them at the gateway.

Score: 0

|
Post Reply
xyzcb1
Jul 13, 2006 - 11:42 PM

i don't know much people use PPT except in the corporate world. Most of the time, they create their out presentation and pass around with their own small team. And again, this require user to open the file from stranger

Score: 0

|
Post Reply
Spyderloco
Jul 13, 2006 - 9:32 PM

Blah blah blah.

More holes in software.

Blah blah blah.

It will never stop so get over it.

Score: 0

|
Post Reply
wincement
Jul 14, 2006 - 10:50 AM

If you're trying to get your account terminated, I'd say you're well on your way. Keep up the good work!

Score: 0

|
Post Reply
Spyderloco
Jul 14, 2006 - 6:38 PM

If you're trying to look like a knownothing idiot, I'd say you're well on your way. Keep up the good work!

Score: 0

|
Post Reply
crashoverride
Jul 17, 2006 - 12:45 AM

Normally I don't agree with wincement on very much but this time I have to agree. You need to use that brain between you ears for something besides holding up your hair.

Score: 0

|
Post Reply
GCoder
Jul 13, 2006 - 5:29 PM

Swiss Cheese will always have holes no matter how much you try and patch it.

Score: 0

|
Post Reply
mjm01010101
Jul 13, 2006 - 5:55 PM

What if I just eat it?

mmmmm swiss.
mmmmm cheese.

Score: 0

|
Post Reply
Grazer
Jul 14, 2006 - 12:42 PM

Then GCoder will hunt you down and destroy you. "Swiss Cheese" is their motto.

I sometimes wonder if they keep a single post in a text file somewhere and just paste it in whenever one of these stories pops up.

Score: 0

|
Post Reply
wincement
Jul 14, 2006 - 1:33 PM

Actually, most companies do have a template of some sort for handling outages, technical problems, etc.

Score: 0

|
Post Reply
Grazer
Jul 14, 2006 - 2:33 PM

Huh? By "they", I meant GCoder, I prefer "they" over "(s)he".

Score: 0

|
Post Reply
wincement
Jul 14, 2006 - 2:44 PM edited

oh lol...

I thought it was sort of a random change of subject. Sorry. =p

Score: 0

|
Post Reply
The MAZZTer
Jul 13, 2006 - 4:54 PM

Hmm... pretty stealthy of it... once it infects the computer it replaces the bad PPT file with a good one so that it opens and the user is none the wiser...

Score: 0

|
Post Reply

Microsoft's Ray Ozzie: 'Nobody's going to be 100% open'

The mobile apps ecosystems of the world may converge over time, led by apps being ported over across platforms, according to the Chief Software Architect.

Will Firefox beat IE9 to Direct2D rendering?

Just days after Microsoft executives gave conference attendees a peek at a new rendering technology, a Mozilla contributor revealed he's working on the same thing.

Where there's smoke: Apple warranty stance raises troubling questions

Carmi Levy | Wide Angle Zoom: Smoking can be dangerous not only for your lungs, it appears, but for your Apple hardware warranty.

AOL's decision to rebrand as Aol. takes a bad brand and makes it worse

The idea behind the social Web is to crowd source before bringing out something new. But not at AOL, which new logo debuted with a cry of "fail!" across the blogosphere and Twittersphere today.

Microsoft 'worked with Apple' for Silverlight on iPhone, says Goldfarb

By not making such a big deal out of trying to stream video to the iPhone, Microsoft got a big deal out of it, revealed the Silverlight product manager.

Clicker.com cuts through the Web video chaos

In a world where homemade video and Hollywood movies travel the same pipeline, it's good to have a real search engine to cut through the clutter.

A case study in improving software: What Office 2010 can learn from Notion 3

A music composition product gambles with a complete overhaul, in an effort to make headway against two well-known competitors in a tough market.

Kindle 2 update adds battery life, native PDF reader

Amazon has pushed out an update to the Kindle 2 e-reader that lengthens battery life and adds a native PDF viewer.

Safari on iPhone gets competition from a $1 browser app

Apple likes to say it gives iPhone users a full browsing experience, but a new competitor tries to incorporate more desktop browser features.

Action Replay maker sues Microsoft for Xbox 360 'predatory technological barriers'

Third-party video game accessory maker Datel has filed an antitrust lawsuit against Microsoft over the Xbox 360's recent Dashboard update.

Microsoft's Bob Muglia and Ray Ozzie on Silverlight vs. standards

Bob Muglia: "We're trying to provide people with an environment that has capabilities that you just simply can't do today in the standards-based world."