New vulnerability found in Microsoft Excel 2003
A new vulnerability which affects Microsoft Excel files has been found. This vulnerability follows a vulnerability
discovered in Microsoft Word one month ago. At least one attack has been confirmed by Microsoft.
The vulnerability with Microsoft Word was that it would allow hackers to gain access to a computer through an infected e-mail Word document. Microsoft released patches for that vulnerability once that vulnerability occurred. Now that has been fixed, but Microsoft could not control the occurrence of this new vulnerability associated with Microsoft Excel. The new vulnerability allows hackers to gain access to a computer through an infected Excel sheet document. The file is called okN.xls and it uses a Trojan horse to gain control of a computer.
Microsoft has confirmed that it has received one report about a customer being infected with a new vulnerability in Excel. Mike Reavey , Microsoft operations manager said in response to a post to the company blog, "Here's what we know: In order for this attack to be carried out, a user must first open a malicious Excel document that is sent as an email attachment or otherwise provided to them by an attacker. (note that opening it out of email will prompt you to be careful about opening the attachment) So remember to be very careful opening unsolicited attachments from both known and unknown sources."
Experts believe since both the vulnerabilities ( the one associated with Word and the one associated with Excel) work in the same fashion, those behind the two vulnerabilites would also be same. They also believe that they may be working in an organized conspiracy circle.
Microsoft has not said when it will release the patch for the new vulnerability.
security
Beware, Branbra.DCY -
a new kind of trojan has arrived
Branbra.DCY, a trojan targeting the users of online banking in Brazil, captures the screen activities of online keyboard authentication.
MS06-040 Windows Remote Code Execution Vulnerability protection
Agnitum has reassured users of Outpost Firewall Pro that the software already protects them from MS06-040 Windows Remote Code Execution Vulnerability protection.
Cisco NAC Appliance 4.0
Cisco delivers NAC Appliance 4.0, evolves policy- compliant Network Security for Distributed Enterprises, protection enhanced for corporate LANs, VPNs and Wireless Network Access Points
Symantec launches "Confidential" for safer online transactions
New vulnerability found in Microsoft Excel
2003
Yahoo e-mail hit by Yamanner worm 6
Microsoft set to issue a dozen software patches
Microsoft releases Antigen email server antidote
Windows flaw may hack applications, start Denial of service attack
Symantec launches Norton 360
Mozilla fixes vulnerabilities in Firefox browser and e-mail client
Symantec releases patch for flaw
Windows Live Onecare from Microsoft
Symantec antivirus software has a
flaw
Anonymous
browsing with Firefox: Stealther Firefox extension
|
