|
Posted by Karl Levinson, mvp on October 7, 2005, 6:16 am
If you were Registered and logged in, you could reply and use other advanced thread options
I agree it is troubling that that this vulnerability is so old.
But I would note that the risk is reduced, at least for Outlook and Outlook
Express users, because by default they cannot open .MDB file attachments on
emails, the most likely vector for such an attack.
> "Virus writers have created a Trojan which uses an unpatched vulnerability
> in Microsoft Office to take over Windows PCs. The Hesive Trojan can be
> disguised as a Microsoft Access file. Once opened in Access, infected .mdb
> files take advantage of a five-month old buffer overflow flaw in
> Microsoft's Jet Database Engine software to seize control of vulnerable
> machines."
>
>
> http://www.securityfocus.com/news/11335
>
> Imhotep
| 
XML site map