Faulty Word Attachments
Microsoft is at the bad end of yet another Zero-Day flaw, bringing the total to five unpatched vulnerabilities in almost 60 days. Security companies of Symantec and Secuna have reported the security hole that could allow attackers control of your system by simply opening an infected MS Word document. The vulnerability has even earned itself a “highly critical” rating, which is the highest level a security threat can get. In other words, this is serious.
The flaw is actively being exposed by attackers who are feverishly attempting to infect as many PCs as possible by sending out spam e-mails that contain infected Word documents. If this specially crafted Word document is opened by a user, it will introduce a Trojan called Trojan.Mdropper.W to the system. It will then install silently in the background, allowing remote control of the infected system.
The attacks are not limited to e-mail attachments either. A user can also be infected by visiting a Web site that opens one of these infected Word documents, resulting in the same remote code execution.
I guess the one good thing that you could say about this particular vulnerability is the fact that this particular vulnerability only affects Word 2000. Also, the attacks are actually easy to stop. Since the virus takes advantage of a bug in MS Word, all you have to do is stop opening Word documents from unknown sources or unexpectedly from known sources. You can’t be infected if you don’t open the document. And that’s all I have for you today.
Until next week, stay safe out there!
~ Chad Stelnicki