On last.fm: Listen to Shwayze's Music
BNET Business Network:
BNET
TechRepublic
ZDNet
60 TalkBacks

By Joris Evers, News.com
Posted on ZDNet News: Sep 30, 2005 10:48:00 PM

A new Trojan horse exploits an unpatched flaw in Microsoft Office and could let an attacker commandeer vulnerable computers, security experts have warned.

The malicious code takes advantage of a flaw in Microsoft's Jet Database Engine, a lightweight database used in the company's Office productivity software. The security hole was reported to Microsoft in April, but the company has yet to provide a fix for the problem.

"Microsoft is aware that a Trojan recently released into the wild may be exploiting a publicly reported vulnerability in Microsoft Office," a company representative said in a statement sent via e-mail on Friday. The software maker is investigating the issue and will take "appropriate action," the representative said.

The Trojan horse arrives in the guise of a Microsoft Access file, security software maker Symantec said in an advisory. When run on a vulnerable system, it would give a remote attacker full access to a compromised computer, Symantec said. The company calls the pest "Backdoor.Hesive" and notes that it is not widespread.

Although exploits had already been released in April when HexView publicly reported the flaw, the Trojan is believed to be the first actual threat to take advantage of the security hole. Security monitoring firm Secunia rates the issue "highly critical," one notch below its most serious rating.

"The vulnerability is caused due to a memory handling error when...parsing database files," Secunia said in its April advisory. "This can be exploited to execute arbitrary code by tricking a user into opening a specially crafted '.mdb' file in Microsoft Access."

Symantec advises users to be cautious when opening unknown files. The security software maker lists all recent Windows releases as vulnerable to the Trojan attack.

  • Talkback
  • Most Recent of 60 Talkback(s)
Confirms My Suspicions
All along I've been saying that since Microsoft has always been the prime player with little competition (such an entity used to be called a monopoly..but I'll let that go), its sloppiness soon became... (Read the rest)
Posted by: EBathory Posted on: 10/04/05 You are currently: Logged In | Log out
Hold your breath, Cox and Davidson... carlito408@...   | 09/30/05
Let Mikey Speak!!!...... Gonna_Snap   | 09/30/05
So Sad Loverock Davidson   | 09/30/05
Nothing wrong with being so popular Squawkbox   | 09/30/05
I know I have not been around for awhile Squawkbox   | 09/30/05
(ps - booya) carlito408@...   | 09/30/05
This is sad,,, I'm Ye, the MS SHILL .   | 10/01/05
Heh, I fell for it a few times. olePigeon   | 10/03/05
Why wouldn't I? Loverock Davidson   | 10/03/05
Now, I am really puzzled: mr Ou had convinced me that FF iss sooo unsafe... michael_t   | 09/30/05
I'm puzzled what this has to do with IE and FF george_ou   | 09/30/05
Simply put I'm Ye, the MS SHILL .   | 10/01/05
Over statement george_ou   | 10/02/05
Can Not DELIVER On TIME mrlinux   | 10/03/05
I Keep Checking and Checking... EBathory   | 10/04/05
Message has been deleted. Gonna_Snap   | 09/30/05
Ooops - looks like you'll have to change your screen name EJHonda   | 10/03/05
Trojan rides in on unpatched Office flaw Loverock Davidson   | 09/30/05
Nope .... I don't think so...... Gonna_Snap   | 09/30/05
Damn that was close ..... LOL<NT> Gonna_Snap   | 09/30/05
The only working IT Scion   | 09/30/05
VB doesn't run by default george_ou   | 09/30/05
I don't think that's correct. Immanuel Tranz-Mischen   | 10/01/05
I think you are correct - Gonna_Snap   | 10/01/05
Some info for you seosamh_z   | 10/01/05
Sure you can IT Scion   | 10/01/05
But, this is so telling. 6 months and still no patc??? They can't fix it??? DonnieBoy   | 10/01/05
THEY ARE INVESTIGATING IT Loverock Davidson   | 10/01/05
Microsoft has been "investigating it" for six months. DonnieBoy   | 10/02/05
They are thorough Loverock Davidson   | 10/03/05
Where's GEORGE OU to defend M$? IT-sys   | 09/30/05
OMG, they discovered the Startform!!!!!! Arg!!! wolf_z   | 09/30/05
No, this is not what is supposed to happen george_ou   | 09/30/05
Don't worry, George Immanuel Tranz-Mischen   | 10/01/05
George tell me the IT Scion   | 10/01/05
Valid MDBs won't launch george_ou   | 10/02/05
I'm with George on this one... ju1ce   | 10/03/05
Your *** kidding me? ju1ce   | 10/03/05
easy workaround for this Monkey_MCSE   | 09/30/05
Ummm IT Scion   | 09/30/05
what i meant Monkey_MCSE   | 10/01/05
Yea IT Scion   | 10/01/05
If their IT division.... ju1ce   | 10/03/05
More Gloom and Doom IT Scion   | 09/30/05
free solution available here... IT-sys   | 09/30/05
free solution available here... IT-sys   | 09/30/05
Whew! Immanuel Tranz-Mischen   | 10/01/05
Another reason to use OpenOffice. Office: NOT safe at any speed. DonnieBoy   | 10/01/05
Yep, it's safer - until... EJHonda   | 10/03/05
Also read: MICROSOFT HAS KNOW ABOUT THIS SINCE APRIL. DonnieBoy   | 10/01/05
Microsoft Windows Officially Broken IT-sys   | 10/01/05
Confirms My Suspicions EBathory   | 10/04/05
Boo on Microsoft, April April Boot_Agnostic   | 10/01/05
So unknown attachments cause this jmills@...   | 10/02/05
Absolutely! X Marks The Spot   | 10/02/05
Do any of you people actually work in the real world? Sir_Chancealot   | 10/03/05
I Work In The Real World.. charlesgoff   | 10/03/05
In real world people use email zen_dogen   | 10/03/05
What??? charlesgoff   | 10/03/05
Not fair... Zinoron   | 10/03/05

What do you think?

Ultraportables

advertisement
Click Here