Go to the Softpedia homepage


NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
Home / News / Microsoft / Patches and Vulnerabilities

Patches and Vulnerabilities

Microsoft Plugs a Dozen Office Security Holes

No less than 11 Critical vulnerabilities

By Marius Oiaga, Technology News Editor

12th of March 2008, 17:03 GMT

Adjust text size:


Windows Update
Enlarge picture
Microsoft has plugged no less than 12 security holes in its Office System. According to Tami Gallupe, MSRC Release Manager, all of the four security bulletins come with a maximum severity rating of Critical, a rating associated with the risk of allowing remote code execution. Five vulnerabilities impacting Office Outlook, Office and Office Web were privately reported to Microsoft. But the remaining seven holes are a mix of both privately and publicly reported vulnerabilities impacting the Excel component of the Office System.

"11 are rated 'critical' and one is rated 'important'. Two of
the critical issues affect Office Web Components and have the potential to be the worst of the bunch. Office Web Components are installed as part of multiple applications. The vulnerabilities affecting them can be triggered by simply visiting a web page with some attacker-controlled content. Seven of the critical issues affect Microsoft Excel and require a victim to open a malicious file to trigger the vulnerability. The remaining issues affect Outlook and Office," Rob Keith, Security Response Engineer.

All the vulnerabilities are exploitable via malformed documents and, in the eventuality of a successful exploit, could permit the attacker to take complete control of an affected system. According to Microsoft, all the flaws put at risks both Windows and Mac users. This because the Redmond company ships not only a version of Office for Windows, but also a flavor aimed at Apple's proprietary platform.

"Windows users may be fairly accustomed to installing patches from Microsoft - but this a timely reminder that Apple Mac users need to be just as diligent when it comes to matters of computer security. Whether you run a PC or a Mac it's important to take these latest security bulletins from Microsoft seriously and ensure that your business is properly protected," said Graham Cluley, senior technology consultant at Sophos.

TAGS:

 Office | vulnerability | patch | security bulletin


Rating:
Fair (2.5/5) 6 vote(s) so far    

Read by 0 user(s) | Add comment | Link to this article
Subscribe to news | Print article | Send to friend

© Copyright 2001-2008 Softpedia
Contact:

 

 

SEARCH THE NEWS ARCHIVE :




Today's News | Yesterday's News | News Archive


MORE RELATED ARTICLES:


Microsoft Admits It Is Spying Apple Users with Office 2008 for Mac

Internet Explorer 8 Beta 1 Features on Parade Live!

Opera Says Internet Explorer 8 Still Has a Long Way to Go

Download Free Windows Vista and Windows XP SP2 Straight from Microsoft

Microsoft Shows Open Source a Little Love

If You Have Vista RTM, or Vista SP1, You Are Safe

Download Free Slipstream Office SharePoint Server 2007 SP1

Watch Steve Ballmer Mock Apple's MacBook Air

Under the Hood of Windows Home Server

User opinions:

No user comments yet.
Be the first to express your opinion using the form below!

Share your opinion:

Your Name:
Your Email Address:
(will not be used for commercial purposes)
Solve this to prove you're not a bot: =
Your review/opinion:

 






SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   ENTER NEWS SITE   |   ENGLISH BOARD   |   ROMANIAN FORUM
© 2001 - 2008 Softpedia. All rights reserved.
Softpedia™ and the Softpedia™ logo are registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use | Update your software | Archive