LinkBack URL
About LinkBacks
MS Word Vulnerability
From http://safecomputing.open.ac.uk/latest_bulletins.htm
-----------------------------------------------------------------------------------------------
B U L L E T I N
Microsoft is working on a fix for a vulnerability in Windows which may be triggered when malicious documents are opened. The only immediate defence is to be vigilant and not to open suspicious files attached to unsolicited emails.
The installer file is currently contained in a malicious Microsoft Word document that exploits a previously unknown security flaw in the Windows kernel that allows remote code execution. Once the user opens the file, the malicious code executed and installs the Duqu remote access Trojan on the system and begins monitoring the network. The nature of the code means that it could be placed in other document types as well as MS Word.
Duqu appears to have a similar function to Stuxnet. That was a worm that was targeted at and infected a number of industrial control systems in Iran’s nuclear facility in 2010. It is believed that it may target specific organisations, in particular in Europe and the Middle East, in order to steal data.
Although the malware is not aimed at domestic users, many who work from home are part of large organisations to which those machines are often connected.
-------------------------------------------------------------------------------------------------
Reply With Quote
