Security News

Zero-day vulnerability in PowerPoint spawns Microsoft alert

By Angela Gunn | Published April 3, 2009, 5:07 AM

Ah, the life of a security reporter: You ask Microsoft's communcations managers if the new PowerPoint vulnerability announced Thursday evening is a zero-day vulnerability, currently being exploited in the wild with no patch to shield us, and a spokesperson responds that "At this time, Microsoft is only aware of limited and targeted attacks that attempt to use this vulnerability." In other words, yes.

Security Advisory 969136 describes the new problem as one that can allow remote code execution if the file recipient opens an infected file. The Microsoft Security Research & Defense blog is rather more useful (not to mention straightforward -- yes, they're seeing it out in the wild, used in targeted attacks), recommending several defensive maneuvers while we await a patch. Those include using PowerPoint's newer version of XML, temporarily disabling the binary file format if your organization's using PPTX, and forcing legacy PowerPoint files to open in MOICE. Bloggers Bruce Dang and Jonathan Ness note that this is the first time Office 2003 SP3 (fully patched) has been successfully attacked in the wild since its release in September 2007.

Comments

View comments by with a score of at least

extremely well
Apr 4, 2009 - 3:30 PM

One key piece of info missing in this report is: this exploit does not affect PowerPoint 2007...

Also, it should really state "SP3 for Office 2003 .. which has been released in Sep 2007". It puzzled me for approx 7.2 seconds that "Office 2003 SP3 has been released in 2007". C'mon, who bought Office 2003 in 2007... 99% bought Office 2003 earlier (no SP3) or bought Office 2007 when it was out...

Score: 1

|
Post Reply
extremely well
Apr 4, 2009 - 3:35 PM

Hehehe strange score system we've got here. I was able to mod myself up (should not be allowed), but the stranger thing is when I modded myself down it ignored it! hehehehehe I guess the system (and we all know computers are NEVER wrong) refused to deny my greatness.

j/k ;)

Score: 0

|
Post Reply
extremely well
Apr 4, 2009 - 3:38 PM edited

"Ahh I C" said the blind man. Sys simply doesn't let you CHANGE YOUR MIND. (Or probably more technically precise - REVOTE).

Score: 0

|
Post Reply
Angela Gunn
Apr 6, 2009 - 3:19 AM

Alas, our system is not Chicago-style -- just obstinate. (And believe me, I share your frustration, though on the whole I just wish the ratings system meant... something. Anything.)

Score: 0

|
Post Reply

EC's Kroes to US senators: Mind your own business on Oracle + Sun

If the AP is accurate, the EU's antitrust chief just told the United States Senate that any merger that takes place in the world is more her affair than theirs.

What does AT&T's 'Mark the Spot' app say about service quality?

That's a question for Betanews readers to answer in comments to this post.

Windows fix for TLS security bug still forthcoming, won't be Tuesday

Anyone looking for a fix for last month's discovery of a potentially serious security hole in TLS and SSL may have to wait until everyone is ready to act together.

Google rolls out real-time search, Near Me Now, extended personalization

Over time, searches from PCs and mobile phones will grow even "more personalized." But what about user privacy and search results that give you "the truth"?

Betanews Podcast: Rupert Murdoch and the buying stuff online problem

We'll have a more difficult time paying for online news if the underlying protocol for online payment has a big gaping hole in it.

Not the first, not the last, technology predictions for 2010

Carmi Levy | Wide Angle Zoom: The real truth is probably that what went around in 2009, will come around to haunt us next year.

Google Goggles: Hands on with the Shazam of the Real World

Google today unveiled Goggles, its visual search lab for Android devices that identifies objects by sight.

Microsoft: Windows 7 Family Pack wasn't 'pulled,' it just sold out

If you hurry, you may still be able to find the last Family Pack upgrade editions hanging around retail store shelves, but probably not so much online.

Clever iPhone game returns after being bumped over a name dispute

The game's simple concept and multitude of platforms and puzzles manage to pull off a retro, 8-bit style that's reminiscent of an old Atari game given a modern makeover.

Intel's marriage of CPU and GPU not ready for prime time

Although there will be an Intel component this month that can compute and plot in parallel, Betanews was told today, it won't be based on Project "Larrabee."

An alternative to Research in Motion's enterprise e-mail? There's an app for that

Good Technology today released an iPhone app compatible with its enterprise e-mail solution.