Severity: Medium Summary: These vulnerabilities affect: Microsoft Office (for PC and Mac), the SharePoint suite of products, and Visual Basic How an attacker exploits them: Multiple vectors of attack, including luring your users into opening malicious Office documents, or into visiting web sites with malicious content Impact: In the worst case, an attacker can execute code, … [Read more...]
Word, Visio, and Excel Suffer from Document Handling Vulnerabilities
Severity: High Summary: These vulnerabilities affect: Most current versions of Microsoft Office for Windows and Mac, and related products like Visio Viewer and the Office Compatibility Packs How an attacker exploits them: Typically, by enticing you to open maliciously crafted Office documents Impact: An attacker can execute code, potentially gaining complete control of your … [Read more...]
Microsoft Black Tuesday: May Brings Windows, Office and .NET Patches
Microsoft has offered its May security updates to the masses. As expected, the theme this month seems to revolve around Office document parsing vulnerabilities. If you use Office in your network, you will want to apply these updates as soon as possible. In their May security bulletin summary, Microsoft highlights seven security bulletins that fix 23 vulnerabilities in four … [Read more...]
Multiple Office Security Updates: One Affects Other Server Products
Severity: High Summary: These vulnerabilities affect: Microsoft Office, Works, SQL Server, BizTalk Server 2002, Commerce Server, Visual FoxPro, and Visual Basic 6.0 Runtime How an attacker exploits them: Multiple vectors of attack, including luring your users to a malicious web site or link, and enticing them to open malicious Works files Impact: In the worst case, an … [Read more...]
Microsoft Office Updates Correct Sharepoint and Visio Flaws
Summary: These vulnerabilities affect: SharePoint, SharePoint Foundation, and Visio Viewer 2010, which are all part of Microsoft's Office suite of products How an attacker exploits them: Multiple vectors of attack, including luring your users to a malicious web site or link, and enticing them to open malicious Visio files Impact: In the worst case, an attacker can execute … [Read more...]