Re: Microsoft battles Word PC virus


"Imhotep" <imhotep@xxxxxxxxxx> wrote in message
news:s6GdnXv0OdOJZeXZRVn-iA@xxxxxxxxxxxxxxx
Tom [Pepper] Willett wrote:

Roger:

Do you think the millions of people who use Word know about the link you
posted?

I don't think so.

Tom
"Roger Abell [MVP]" <mvpNoSpam@xxxxxxx> wrote in message
news:e15Yf1dgGHA.4252@xxxxxxxxxxxxxxxxxxxxxxx
http://www.microsoft.com/technet/security/advisory/919637.mspx
seeing as how no one posted this link on the matter.

"Imhotep" <imhotep@xxxxxxxxxx> wrote in message
news:b7OdnXaKtNJ2PuXZRVn-ug@xxxxxxxxxxxxxxx
"Users are being warned to watch out for booby-trapped documents
Microsoft could release early a patch for a loophole in its Word
program
that virus writers are already exploiting.

If users get infected by the virus, attackers could open up a backdoor
on the PC and take over the machine to use it for their own ends.

A fix is due for release in mid-June but Microsoft said it would bring
it forward if the action was "warranted".

Microsoft told users to turn off some Word features in order to protect
themselves."


http://news.bbc.co.uk/2/hi/technology/5013712.stm

-- Imhotep




I am not sure why you view the MS link as so important as compared to
other
links. The only piece of information provided that is important was
Microsoft saying that they should have a patch by June's security patch
date...am I missing something?



winword.exe /safe
??

Did I say I viewed the link I provided as important ?
The other links mentioned in the thread referred to this advisory, even
paraphrased parts, but I did not notice them providing the actual link.


.

Relevant Pages

  • Re: [Full-disclosure] Office 0day
    ... more and continue consulting for microsoft rather than criminal networks. ... to fix the product if it is flawed. ... That is like me trying to argue that after going to a car mechanic, ... "Members of the jury, by keeping quiet about the bug and not shipping a patch, ...
    (Full-Disclosure)
  • Re: In regards to MS IE 6.0 Critical update 834489 - Workarounds do not work.
    ... >> not fix our problems at all. ... >> Microsoft partner, and we depend FULLY on IE. ... >> Each IP video server has HTTP authentication to protect ... >> With this patch basically renders our ENTIRE software ...
    (microsoft.public.windows.inetexplorer.ie6.browser)
  • Re: Immediate Logoff
    ... What I am saying is that there is no magic button that MSFT can push to fix the problem unless you can give them some information, ... Microsoft MVP - Terminal Server ... however think it is ironic how it happened from a patch. ... Do you know where I can report this to Microsoft for free? ...
    (microsoft.public.windows.terminal_services)
  • Re: Windows WMF Security Flaw
    ... I did see a reference to it and what the fix does. ... this case the "patch" appears to only do a registry change which is a user ... >>> Microsoft is dragging their heels on this one. ... > I'm aware that it is off topic for a home repair newsgroup, ...
    (alt.home.repair)
  • Re: [Full-disclosure] Security Alert: Unofficial IE patches appear on internet
    ... created by a vulnerability is as serious as this case and the available ... Microsoft will be inclined strongly against holding on to this patch. ... Microsoft often have patches ready but wait for the corporate known ...
    (Full-Disclosure)