|
General
|
|
Written by Daniel
|
|
Tuesday, 05 September 2006 09:54 |
Word flaw hit with zero-day attack
By Dawn Kawamoto
Staff Writer, CNET News.com
Published: September 5, 2006, 7:59 AM PDT
is currently being exploited by malicious attackers, which could lead to remote execution of code on a user's system, security researcher Secunia advised Tuesday.
The vulnerability affects systems running Windows 2000 and occurs when processing malicious Word 2000 documents, according to Secunia's security advisory.
Security company Symantec, which several days ago detected the exploit, Trojan MDropper.Q, noted that it uses a two-step attack.
Trojan MDropper.Q exploits the Microsoft Word vulnerability to drop another file, a new variant of Backdoor.Femo, according to a security advisory by Symantec.
Discussion
|
