Security holes plague Microsoft Word, Outlook

Article

Security holes plague Microsoft Word, Outlook

A "moderately critical" vulnerability in Microsoft Word and Outlook could allow an attacker to remotely access computer systems, Coppenhagen, Denmark-based IT security firm Secunia said.

The advisory said the problem arises when Word is used to

    Requires Free Membership to View

    Login

    SearchSecurity.com members gain immediate and unlimited access to breaking industry news, virus alerts, new hacker threats, highly focused security newsletters, and more -- all at no cost. Join me on SearchSecurity.com today!

    Michael S. Mimoso, Editorial Director

    By submitting your registration information to SearchSecurity.com you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchSecurity.com is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.

edit mail in Outlook. This could be exploited to execute arbitrary code on a user's system if the user is tricked into forwarding a malicious e-mail with an unclosed "OBJECT" tag. The flaw could also be exploited through malicious HTML documents if edited in Word.

Reportedly, the advisory said, the vulnerability can only be exploited when mails are forwarded.

Secunia advises people not to use Word as the default mail editor.

James C. Slora Jr., assistant director of information technology for Chantilly, Va.-based engineering and land development firm Patton Harris Rust & Associates, reported the problem to Microsoft. "Word appears not to be subjected to Security Zone restrictions. Instead, individual and very specific commands and handlers appear to get blocked during HTML parsing," Slora said in an e-mail. "This apparent approach to Word security may mean that whole families of vulnerabilities that have been blocked in Outlook and Internet Explorer are probably still exploitable in Word."

He added, "I expect Microsoft to eventually issue a patch against the specific scenario I disclosed if they get enough heat about it, but there are probably a lot more exploit possibilities in Word."

Microsoft could not immediately be reached for comment.

Affected products are:

  • Microsoft Office 2000
  • Microsoft Office 2003 Professional Edition
  • Microsoft Office 2003 Small Business Edition
  • Microsoft Office 2003 Standard Edition
  • Microsoft Office 2003 Student and Teacher Edition
  • Microsoft Outlook 2000
  • Microsoft Outlook 2003
  • Microsoft Word 2000
  • Microsoft Works Suite 2003