Malicious Word Docs Exploit Critical IE Flaw


Please consider registering


— Forum Scope —

— Match —

— Forum Options —

Minimum search word length is 3 characters - maximum search word length is 84 characters

Register Lost password?
sp_Feed sp_topic_old
Malicious Word Docs Exploit Critical IE Flaw
Ken Harthun
Forum Posts: 86
Member Since:
August 11, 2011
sp_UserOfflineSmall Offline
December 19, 2008 - 4:54 pm
sp_Permalink sp_Print

Needless to say, you should NEVER open an email attachment unless you know who it came from, what it is, and why you're getting it. The IE flaw that Microsoft patched yesterday is now being exploited by attackers via Microsoft Word documents with malicious ActiveX controls embedded in them. These are being sent out in spam emails as attachments and through malicious websites. From [url=]SANS NewsBites, Vol. 10, Num. 99[/url:h0ui1w65]:
[quote:h0ui1w65]The Internet Explorer (IE) vulnerability for which Microsoft has just released an out-of-cycle being exploited in
another way; attackers are seeding Microsoft Word documents with malicious ActiveX controls. The embedded controls contain lines of code
that cause the host on which the controls have been downloaded to visit a site that hosts malware. Users receive the infected Word documents
as email attachments or through maliciously manipulated websites.[/quote:h0ui1w65]
Check out this [url=]Computerworld article[/url:h0ui1w65] for more information.

Forum Timezone: America/Indiana/Indianapolis

Most Users Ever Online: 2303

Currently Online:
16 Guest(s)

Currently Browsing this Page:
1 Guest(s)

Member Stats:

Guest Posters: 11

Members: 2886

Moderators: 6

Admins: 4

Forum Stats:

Groups: 8

Forums: 20

Topics: 1879

Posts: 13310

Administrators: Jim Hillier, Richard Pedersen, David Hartsock, Marc Thomas

Moderators: Carol Bratt, dandl, Jason Shuffield, Jim Canfield, Terry Hollett, Sergey Grankin

Scroll to Top


Get great content like this delivered to your inbox!

It's free, convenient, and delivered right to your inbox! We do not spam and we will not share your address. Period!