Go to the Softpedia homepage


NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
Home / News / Microsoft

Microsoft

New Microsoft Vulnerability

This time in Excel

By Marius Oiaga, Technology News Editor

17th of June 2006, 08:38 GMT

Adjust text size:


Microsoft Security Response Center bloc has reported an isolated incident concerning the exploitation of a previously unknown security flaw in Microsoft Excel. The attack was carried out
via a malicious Excel spreadsheets attached to e-mail.

"In order for this attack to be carried out, a user must first open a malicious Excel document," wrote Mike Reavey, an MSRC program manager. "Note that opening it out of email will prompt you to be careful about opening the attachment. So remember to be very careful opening unsolicited attachments from both known and unknown sources."

The undocumented Excel bug permits Trojan.Mdropper.J, masquerading as an Excel file, complete with the .xls file extension, to drop Downloader.Booli.A Trojan horse with the following name: %System%svc.exe and that acts as a backdoor on the compromised computer.

Symantec announced that the Downloader.Booli.A affects Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP, and that it may download additional malware after it has infected a computer.

"For now the issue has occurred only as part of a targeted attack," Symantec said in an alert issued through its DeepSight Threat Management System. "However, with the disclosure of this previously unknown vulnerability, new attackers may begin to exploit it in a widespread manner."

This comes at a very favorable time for hackers, as Microsoft is not scheduled to launch other patches for at least a month.


Rating:
Fair (2.7/5) 10 vote(s) so far    

Read by 1,586 user(s) | Add comment | Link to this article
Subscribe to news | Print article | Send to friend

© Copyright 2001-2008 Softpedia
Contact:

 

 

SEARCH THE NEWS ARCHIVE :




Today's News | Yesterday's News | News Archive


MORE RELATED ARTICLES:


Microsoft Wants Yet Another iPod Killer

Microsoft ventures in Europe

Microsoft - The Time for Updates Is Close

Management Solutions from Microsoft

Microsoft's Patches Cause Problems, Again!

User opinions:

No user comments yet.
Be the first to express your opinion using the form below!

Share your opinion:

Your Name:
Your Email Address:
(will not be used for commercial purposes)
Solve this to prove you're not a bot: =
Your review/opinion:

 






SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   ENTER NEWS SITE   |   ENGLISH BOARD   |   ROMANIAN FORUM
© 2001 - 2008 Softpedia. All rights reserved.
Softpedia™ and the Softpedia™ logo are registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use | Update your software | Archive