LINKS
INSTRUCTION
STRINGS
ACCESSORIES
MUSIC
 The Steel Guitar Forum Store 
Our Online Store
b0b's Steel Links

The Steel Guitar Forum

Help Search Join Private Messages Log in


Post new topic Microsoft Security Advisory 925984
Reply to topic
Forum Index > Computers Next oldest topic :: Next newest topic
Author Topic:  Microsoft Security Advisory 925984
Wiz Feinberg


From:
Mid-Michigan, USA
Post  Posted 28 Sep 2006 6:31 pm    
Reply with quote
Microsoft Security Advisory 925984

Microsoft Security Advisory (925984)

Vulnerability in PowerPoint Could Allow Remote Code Execution

Published: September 27, 2006

Microsoft is investigating new public reports of limited “zero-day” attacks using a vulnerability in Microsoft PowerPoint 2000, Microsoft PowerPoint 2002, Microsoft Office PowerPoint 2003, Microsoft PowerPoint 2004 for Mac, and Microsoft PowerPoint v. X for Mac.

In order for this attack to be carried out, a user must first open a malicious PowerPoint file attached to an e-mail or otherwise provided to them by an attacker.

As a best practice, users should always exercise extreme caution when opening unsolicited attachments from both known and unknown sources. Microsoft has added detection to the Windows Live OneCare safety scanner for up-to-date removal of malicious software that attempts to exploit this vulnerability.

Microsoft is also actively sharing information with Microsoft Security Response Alliance partners so that their detection can be up to date to detect and remove attacks.


Workarounds for Microsoft PowerPoint Remote Code Vulnerability:

Microsoft has tested the following workarounds. While these workarounds will not correct the underlying vulnerability, they help block known attack vectors. When a workaround reduces functionality, it is identified in the following section.

• Use PowerPoint Viewer 2003 to open and view files. PowerPoint Viewer 2003 does not contain the vulnerable code and is not susceptible to this attack. To download the PowerPoint Viewer 2003 for free, visit the following website.

• Do not open or save PowerPoint files that you receive from un-trusted sources or that you receive unexpectedly from trusted sources. This vulnerability could be exploited when a user opens a specially crafted PowerPoint file.
=============================================
Exploits are already in the Wild. I suggest that you implement the suggested workarounds if you have MS Office, or Powerpoint installed on your computers, until a patch is released and installed. And, do not open any untrusted Office documents.

------------------
Bob "Wiz" Feinberg
Moderator of the SGF Computers Forum
Visit my Wiztunes Steel Guitar website at: http://www.wiztunes.com/
or my computer troubleshooting website: Wizcrafts Computer Services,
or my Webmaster Services webpage. Get Firefox Here.
Learn about current computer virus and security threats here.
Read Wiz's Blog for security news and update notices. My FAQs.

[This message was edited by Wiz Feinberg on 28 September 2006 at 07:45 PM.]
View user's profile Send private message Send e-mail Visit poster's website
Forum Index > Computers Next oldest topic :: Next newest topic
  Reply to topic

All times are GMT - 8 Hours
Jump to:  

Our Online Catalog
Strings, CDs, instruction,
steel guitars & accessories
www.SteelGuitarShopper.com
Please review our Forum Rules and Policies

Steel Guitar Forum LLC
PO Box 237
Mount Horeb, WI 53572 USA


Click Here to Send a Donation

Email admin@steelguitarforum.com for technical support.

Powered by phpBB © 2001, 2005 phpBB Group
BIAB Styles
Ray Price Shuffles for
Band-in-a-Box
by Jim Baron
HTTP