Owner of the BFT
Commenting To 
19th-May-2006 01:49 pm - Microsoft Word Zero-Day attack in wild
Serve
This is FYI at this time, in case this escalates.

Here's what I've gotten so far - Word XP and 2003 vulnerable to a zero day exploit. User must open malicious .doc file. "When the .doc attachment is opened, it exploits a previously unknown vulnerability in Microsoft Word and infects a fully patched Windows system. The exploit functioned as a dropper, extracting and launching a Trojan that immediately overwrites the original Word document with a "clean," uninfected copy."

References:
http://blogs.technet.com/msrc/archive/2006/05/19/429353.aspx
http://isc.sans.org/diary.php?storyid=1345
http://www.eweek.com/article2/0,1895,1965042,00.asp

AV vendors:
http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?vname=w97m_mdropper.ab
http://securityresponse.symantec.com/avcenter/venc/data/trojan.mdropper.h.html
http://www.sophos.com/virusinfo/analyses/trojmdropama.html
Comment Form 
From:
(will be screened)
Help(will be screened)
Identity URL: 
Username:
Password:
Don't have an account? Create one now.
Subject:
No HTML allowed in subject
   Help
Message:

 
Notice! This user has turned on the option that logs your IP address when posting. Help
Profile
User: [info]rialtus
Name: Rialtus
Latest Month
June 2009
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
Links
Search
Entry Tags
This page was loaded Jan 7th 2010, 8:03 am GMT.