Email us! Subscribe to Liquidmatrix!

Microsoft Word 0-Day Exploit Released

Author: Dave Lewis
May 19, 2006 at 11:40 am · Filed under Malware

I was thinking that today had been a relatively quiet day. Well, that’s not the case afterall. The folks at F-Secure have a working exploit for Microsoft Word that drops in a binary file and downloads a backdoor. The shellcode and the exploit are encoded so as to avoid detection. We have seen this type of behaviour before with the Cryzip trojan. Malware writers are finding they have good penetration with this type of tactic as gateway antivirus products cannot decrypt on the fly. As it is antivirus products are not picking up this exploit at print time. The folks at SANS Internet Storm Center are following this developing story.

Article Link

UPDATE: Secunia now has an advisory posted. Symantec warning article as well.

UPDATE 2: Microsoft has finally released an advisory (919637)

Tags: , , , ,

Tag It:
  • Digg
  • del.icio.us
  • Slashdot
  • Technorati
  • SphereIt
  • StumbleUpon
  • Fark
  • YahooMyWeb
  • Furl
  • Spurl
  • Ma.gnolia
  • NewsVine
Related Articles:

  • Vulnerability in Microsoft Word Could Allow Remote Code Execution
  • More: Microsoft 0-Day Word Exploit
  • Microsoft Word 2000 Unspecified Code Execution Vulnerability
  • Microsoft Word Unspecified Code Execution Vulnerability
  • Microsoft Word Unspecified Memory Corruption Vulnerability

    • New downloads from MicrosoftThe Windows Live programme is also coming -- Centplus Tech Blog said,

    May 20, 2006 @ 12:20 pm

    [...] Microsoft Word 0-Day Exploit ReleasedThe folks at F-Secure have a working exploit for Microsoft Word that drops in a binary file and downloads a backdoor. The shellcode and the exploit are encoded so as … Article Link. Tags: 0-Day, Expolit, Malware, Trojan, Microsoft Word. [...]

    RSS feed for comments on this post · TrackBack URI

    Leave a Comment