Search Perform an advanced search query SOFTPEDIA
 
SOFTPEDIA
Updated one minute ago
HomeSubmit a program for being reviewedAdvertise on our websiteGet help on surfing our websitesSend us your feedbackGet information about our XML/RSS backend and how to use itBrowse the news archiveVisit our discussion forumVizitati forumul in limba romana



KLIP
  1. HOME
  2. SCIENCE
  3. TECHNOLOGY
  4. WEBMASTER
  5. SECURITY
  6. MICROSOFT
  7. LINUX
  8. APPLE
  9. GAMES
  10. TELECOMS
  11. REVIEWS
  12. LIFE & STYLE
  13. EDITORIALS
  14. INTERVIEWS
  15. RSS
Welcome!
Hello, Guest

Login if you have a Softpedia.com account.

Otherwise, register for one.

ADVISORIES

Microsoft Word Users Attacked by Cybercriminals

- Redmond giant looking into it

By: Vlad Constandes, SEO News Editor

Windows is by far the most used operating system in the world, and as a direct result, it is targeted the most by cyberattacks, that take advantage of any flaw they
might find. Microsoft is regularly issuing updates that patch the security liabilities, but the software company cannot keep up with the rate at which the holes are being discovered.

The latest warning issued by the Redmond-based company regards Microsoft Word, and a flaw that was discovered as being used by malware producing individuals to install their software on a target victim’s computer. A MS security advisory says that users should "not open or save Word files that you receive from untrusted sources or that you receive unexpectedly from trusted sources." The risk presented by this hole in security, however, is not believed to be major, as "current attacks require customers to take multiple steps in order to be successful." Nevertheless, the possibility of additional and refined methods of attempting to send the malicious code via this flaw lying in the Jet Database Engine, was not excluded, and the team in charge with patching it is currently studying which other services might find themselves vulnerable.

Everybody running the 2000, 2002, 2003 and 2007 versions of Word are a potential target, unless the operating system used is Microsoft Server 2003 and Microsoft Vista, which have been shipped with a newer version of the Jet Database Engine. Any version of Msjet40.dll that is lower than 4.0.9505.0 will make an excellent target for Cybercriminals, and an emergency patch might be rolled out in order to plug it, ahead of the next security updates, expected on the 8th of April.

Should an attack be successful, the same user rights as the local user will be granted to the one conducting the process, but it will only impact heavily on those having administrator rights on the computer, while the accounts configured to have fewer user rights will be less affected.

MORE RELATED ARTICLES: Antigua Welcomes IP Piracy Google Slowing Down Kerberos Authentication Protocol Ill “The King of Spam” Going to Jail News Corp Outs Talks, Yahoo! Looking Scared
 
Comments | Link here | Subscribe
Print | Send to friend
Today's News | Yesterday's News

Search:

TAGS: advisory microsoft word security

24th March 2008, 20:06 GMT | Copyright (c) 2008 Softpedia | Contact:
Read by 510 user(s) | Rating: | 2 vote(s) so far | Cast your vote:
Microsoft Word Users Attacked by Cybercriminals - USER OPINIONS




We are sorry, there are no opinions available for this article.


SHARE YOUR OPINION ABOUT Microsoft Word Users Attacked by Cybercriminals

Since you are not logged on, your comments will have to be approved before being displayed.
Click here to login, or register.
Your Name:
Your Email:
Type in the result:
Your Opinion:
 


DO YOU WANT TO CONTACT US?  

If you have some comments or you want to send us some information you can send us an email directly to .
You can use the form below for the same purpose.
Your full name: (at least 3 characters)
Your email address: (at least 5 characters)
Message subject: (at least 5 characters)
Message text:
(at least 10 characters)
Type in the result:
 
 
© 2001 - 2008 Softpedia. All rights reserved.
Softpedia™ and Softpedia™ logo are registered trademarks of SoftNews NET SRL.
Copyright Information | Privacy Policy | Terms of Use | Contact Softpedia | Update your software | Archive