Security hole in PowerPoint
At ZDNet, Ryan Naraine reports:
Attackers are using rigged PowerPoint files to exploit an unpatched vulnerability in Microsoft’s presentation software, according to warning late Thursday from the software maker.
In a pre-patch advisory, Microsoft described the attacks as “limited and targeted,” the kind of language that suggests it is being used to steal data from corporate or government networks. The malware associated with the attack is a Trojan dropper embedded within an exploit in .ppt or .pps data files.
According to the advisory, the vulnerability allows remote code execution if a user opens a booby-trapped PowerPoint file.
The newest Microsoft Office PowerPoint 2007 and Microsoft Office for Mac 2008 are not affected.
A Microsoft security advisory is at this link.
Did you enjoy this post? Why not leave a comment below and continue the conversation, or subscribe to my feed and get articles like this delivered automatically to your feed reader.
Comments
No comments yet.
Sorry, the comment form is closed at this time.