Microsoft safety warns: Word user faces risk
March 24, 2008
Time of Beijing of dispatch of sina science and technology on March 23 message, according to foreign media coverage, safety of this Zhou Wufa cloth warns Microsoft, network convict may exploit a Windows loophole that did not release a patch, baleful software is installed on target computer.
Microsoft expresses, according to a report that the user submits, the hacker used documentation of a baleful Word to launch attack. But, perhaps still the flaw with potential other uses means. Current, the attack incident that Microsoft is reporting with respect to the user undertakes investigating. Microsoft says in safe proposal: “Be not opened or save the Word file that comes from origin of Yu Fei accredit, come from to those at trustful origin, but anticipating the file besides also is such. Come from to those at trustful origin, but anticipating the file besides also is such..
In engine of database of Jet of consist in of this one flaw, a lot of products used this one engine, include Microsoft Access. Microsoft is investigating other program to whether also can be atttacked to use by this kind. Because Microsoft returns the patch that did not release this one flaw, concern of the personage inside a lot of course of study can appear ” 0 days of attack ” , namely what virus or worm use operating system or application software is certain the flaw that was not repaired witting or not in time by development business launchs attack. Because the user cannot undertake defending, accordingly such attack often is provided extremely destroy force.
But Microsoft thinks, this kind of possibility is not large. Microsoft expresses: “So far, we observed the attack conduct that tries to exploit this one loophole only. But, need of this kind of attack just is finished by attack ability of much pace operation is successful, the risk is very accordingly limited. ” with before the situation is same, microsoft was not announced will at when repairing this one flaw. But meanwhile, microsoft also did not eliminate to release the possibility of an urgent patch. According to convention, microsoft will be updated in the routine safety of next month in release relevant patch, namely on April 8.
Microsoft expresses, word 2007, 2003, 2002 be atttacked possibly with 2000 users, unless they are used the operating system is Windows Vista or Windows Server 2003 SP2. These two kinds of operating systems used the Jet database engine of new version, nonexistent relevant flaw. Tell from technical angle, version date is put in flaw under the Msjet40.dll file of 4.0.9505.0.
Tags: faces, Microsoft, risk, safety, user, warns, wordAdvertisement
Latest Headlines
- And write down Huang Bu to march formally mobile phone market
- AT
- The message says grand the Touch HD that amount to report will become G2 of Gu Ge mobile phone
- Pass Woerma to will begin to sell 3G edition IPhone on November 15
- Microsoft admits Vista user account controls a function to have a problem
- Network game develops business to become visitor of the 6th aerospace
- HP chip of Nvidia of trouble of 38 table engine exposing to the sun is chief culprit
- Hollywood sues RealNetworks execute one as a warning to others
- Two men download bawdy information to be trafficced through the mobile phone seek profit to be detained
- The safety that browse is become suffer from 360 push ” privacy is browsed ” mode
