“Deja vu? Only a day after Microsoft’s monthly patch day, a new security hole in Microsoft Office is being exploited in cyberattacks.
These attacks take advantage of a previously unknown vulnerability in PowerPoint for which no patch is available, security experts at Symantec said in an alert issued Wednesday. The flaw might affect Microsoft Office in general, according to the alert.
Microsoft is investigating the issue, it said in an e-mailed statement Thursday. The company is aware of attacks that exploit the flaw, but those are “extremely limited, targeted attacks,” it said. For an attack to be successful, users must open a malicious PowerPoint file provided to them, for example via e-mail, Microsoft noted.”
Here is some more Tech News from around the web:
- Microsoft will support the OpenDocument OASIS Standard document format via TechNet
- Lords of the Ring – tour of CERN (video) @ MAKE:Blog
- Electricity in the burbs @ MAKE:Blog
- Boffins build super firewall @ The Inquirer
- Palm Treo 700p Review @ XYZ Computing
- How to Create PDF Files without Adobe @ The TechZone
- HEXUS.net & Armari Â£3,000 Giveaway
- Has the Motorola H5 Miniblue Been Cancelled @ Blue Tomorrow
- Convergence & Home Media Server @ Digital Trends
- HEXUS grows to new publishing heights, partners with Beyond3D
Source: CNet News.com
Close on the heels of Excel vulnerabilities patched this week, a flaw in PowerPoint could lead to remote code execution. Be very cautious in opening any .ppt attachments you get, and read the full story at CNET.