Knowledge Centers

Operating Systems

Networking & Internet

Mobile & Wireless

Business Intelligence

Servers & Data Center

Computerworld Reports

Case Study Library

Industry

This Week in Print

Print Subscriptions

See your link here

Douglas Schweitzer

The Security Sector

More posts | Read bio

March 24, 2008 - 5:33 A.M.

Microsoft Word vulnerability confirmed

TAGS:Microsoft, vulnerability, Word
IT TOPICS:Desktop Applications, Security, Software

It took a couple of weeks for Microsoft to get confirmation, but yesterday they did go on record and released a warning about Microsoft Word that's running on Windows 2000, XP and Server 2003 SP1. Microsoft originally seemed to think there was little threat, but after receiving several legitimate complaints (from companies like Symantec and Panda Security) they acknowledged that the .mdb file (and even .mdb file format blocking in Outlook) and the Jet Database Engine were vulnerable to targeted attacks.

At the moment, there's no fix available, but Microsoft is working on it. The next regularly scheduled patch release day isn't until April 8th, but we'll get notification sooner if Microsoft determines that enough users are being impacted. In the meantime, Jet should be disabled or .mdb files should be blocked at the gateway. And by the way, if you're an Apple user running Word like me, you too should update when our Microsoft brethren do

Reply

Print

Reply

Related Posts

No easy fix for Word legal woes

Microsoft Word ban: It's time to banish patent lawyers

You can't buy MS Word: i4i XML patent ruling

Microsoft banned from selling Word

Today's Top Stories

Google's Chrome OS hits BitTorrent

Free Web apps to help organize your holidays

Global warming research exposed after hack

iPhone owners demand to see Apple source code

Some Nook e-readers won't make it for the holidays

Mike Elgan: Four things you need to know about Apple

Hot Posts

Ubuntu's Canonical and Google partner to create Chrome

Posted by Steven J. Vaughan-Nichols | 73 comments

Five ways to improve Microsoft Office 2010

Posted by Preston Gralla | 8 comments

Google Phone is actually a VoIP phone?

Posted by Seth Weintraub | 7 comments

Recent Comments

No installations, backups,...6 min 29 sec ago

We have a freeway extension...3 hours 20 min ago

same problem...3 hours 40 min ago

White Papers & Webcasts

CIO Viewpoints: Exchange 2007 Risks and Mitigation Strategies
Download This Whitepaper Today!

Extending Client Refresh - 11 Steps to Maximize Savings
Register Now!

Applying Remote Support Technology for Maximum Impact
Download Now!

Lower the Cost and Complexity of a Mobile Workforce through Automation
Download This Resource Now!

IBM Migration Factory: A smooth transition to new technology
Find out how to migrate your applications smoothly over to IBM.

Managing Mobility: Improve Data Security, Compliance and Manageability
Download This Resource Now!

All White Papers | All Webcasts

Computerworld Reports

8 Questions To Ask About Your Intrusion-Security Solution

Computerworld Technology Briefings IT Service Management

Computerworld Briefing - Analytics: The Art and Science of Better

All Computerworld Reports

Sign up to receive updates on the latest Software resources

Receive the latest technology news and information.

	Computerworld Daily News (First Look and Wrap-Up)
	Computerworld Blogs Newsletter
	The Weekly Top 10

View all newsletters

* E-mail Address:

* Industry:

* Job Title:

* Company Size:

* Country:

* State:

I would like to receive offers via e-mail from Computerworld partners.

Douglas Schweitzer's Archive

IT Topics

Sponsored Links

Play NetApp's New Data Defense Game.

Return on Information: Google Enterprise Search pays you back. Get the facts.

How Do You Rank as an Innovation Leader? Download Recent Study.

See how AT&T can help protect your network.

3 Innovations. 3 Free Downloads. Free trials of Windows 7, Windows Server 2008 R2 and Exchange Server 2010.

Take the Netezza TwinFin TestDrive!

NetScaler VPX : Harness the Power of Virtualized Web App Delivery

Get more enterprise mobility value for up to 25% less.

Unified Communications: Thoughts, Strategies and Predictions. Join the discussion.

NYUs M.S. in Management and Systems. Offered Online and On-site.

Crystal Reports Server: More options. Not more money.

Parallelism is not just for HPC. Create rich apps from desktop to device. Get the eval.

Tolly Performance Report "Citrix NetScaler with nCore Outperforms F5 BIG-IP"

Save up to 61% plus Free Cheesecake

Find IT jobs in the Healthcare industry on Dice.com

With the NEW KODAK i700 Series Scanners get full speed at 300dpi!

Not All QSAs Are Created Equal: What You Should Know Before You Buy

The arrival of Serial Attached SCSI (SAS) marks a new era in storage scalability

The AMD Virtual Experience Virtual Trade Show

Stay informed with custom newsletters from Tech Dispenser

New DW Options and Price Points. View Teradata Platform Family Data Sheet.

To get a better view of your entire data center, you need a better vantage point. Improve your vision with Hitachi IT Operations Analyzer - Free 30 day trial

Play NetApp's New Data Defense Game.

Extraordinary times demand Brocade Extraordinary Networks.

Citrix NetScaler with nCore Outperforms F5 BIG-IP - Learn More

64-page prescriptive guide to security, compliance, and IT operations.

Streamline IT Costs. Boost Performance with WAN Optimization

Enterprise Network & Server Monitoring Software. Cross over to Traverse...

Increase UPS efficiency without sacrificing protection

Crystal Reports Server: Single server access to reports & dashboards

Create new opportunities. See business making progress now

ESET NOD32 with ThreatSense(R) - Get your free trial now!

Looking to add Unix/Linux functionality to Windows?

Join the conversation about the hottest IT trends with Computerworld on Twitter.

ITwhitepapers.com - Access thousands of white papers on 300+ technical topics.

Leverage Your Cisco infrastructure for Superior Application Performance

Learn about the AMD Virtual Experience

Introducing: Project Icebreaker

About Us Advertise Contacts Editorial Calendar Help Desk Jobs at IDG Privacy Policy Reprints Site Map

CIO

CSO

DEMO

IDC

IDG

IDG Knowledge Hub

IDG TechNetwork

IDG Ventures

IDG.net

InfoWorld

ITworld

Macworld

The Industry Standard

Copyright © 1994 - 2009 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of
Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.