Friday July 4, 2008 11:50 PM AEST

SC Magazine Australia/NZ > News > Vulnerabilities & Exploits > Application Flaws > Microsoft says Word 2000 flaw is limited to DoS attacks

Vulnerability Alerts

SANS

Microsoft

Microsoft Security Bulletin Advance Notification for July 2008
Microsoft Security Advisory (953818): Blended Threat from Combined Attack Using Apple’s Safari on the Windows Platform

CERT/CC

Latest Comments

"Is this news? The Websense report is from June 6"

on Fake Microsoft patch spam

by G-man | Jul 4, 2008 8:54 PM

"great try that u all gone be happy from this "

on Hackers exploit YouTube servers to send spam

by sumit | Jul 4, 2008 5:08 PM

"When is this issue expected to be sorted out by facebook? Thanks, Yuvaraj www.ezencrypt.com"

on Facebook user profiles hacked, Wall feature relaying spam

by Yuvaraj | Jul 1, 2008 4:52 PM

"Hi Everybody, This is Amit@M. Yuriy Ryabinin and Ivan Biltse did not make the crime, they had ..."

on ATM hackers net millions using stolen information

by Amit Ashok Pawar. | Jul 1, 2008 6:19 AM

" There has been a push on this for years. I did some installs in 05 for the new electronic file ..."

on National health-record privacy law in Congress

by Don | Jun 27, 2008 11:26 PM

Application Flaws

Microsoft says Word 2000 flaw is limited to DoS attacks

"Denial of service is clearly not as critical as other recent issues," McAfee Avert Labs researcher Craig Schmugar said in a Friday blog post. "Looks like this targeted attack was flawed."

Still, with the latest bug, the total number of unpatched Word vulnerabilities has reached at least five. And on Feb. 2, Microsoft reported a zero-day exploit targeting Excel but potentially affecting other Office components.

This high number of outstanding flaws may change with today’s scheduled monthly security update, in which the software giant is expected to release a record dozen fixes, including two critical Office patches.

Many security experts have predicted Microsoft would release out-of-cycle fixes for the Word flaws since December. But Microsoft, which has only ever released two out-of-band patches, has held off.

Click here to email reporter Dan Kaplan.

Ads by Google

Thoughts on this article? Add a comment below.

Be the first to comment on this article.

Name:

Email:

(will not be displayed)

Comment:

(HTML not permitted)

Most Read
Most Discussed
Latest News

Microsoft says Word 2000 flaw is limited to DoS attacks

Sponsored Links

SC MAGAZINE SITEMAP

CATEGORIES

News

Alerts

Products

Stats

Blogs

Photo Galleries

Whitepapers

Events

Jobs

Downloads

Vulnerabilities & Exploits

Breaches & Exposures

Messaging

Mobile

Access Control

Biometrics & Forensics

Legal

Risk Management

Job Centre

Patch Management