Older Microsoft word unpatched vulnerability used as vector in targeted attacks
Symantec reported on what was thought of initially as yet another unpatched vulnerability being exploited by the bad guys out there. We have confirmation it is in fact one of the older -still unpatched- vulnerabilities CVE-2006-6456 that is exploited in targeted attacks.
Even though it appears there might be little gain in once again trying to convince people not to email office documents, not to open them, etc. some renewed attention might be required.
If actively exploited unpatched vulnerabilities is the risk level you need before being allowed to act and start to filter, you might have your "go" at this point. The oldest of the 4 vulnerabilities is publicly known since December 5th, 2006. This latest wave of attacks is exploiting a vulnerability that was publicly known since December 10th, 2006.
Let's hope at least some of them get patched in February's Black Tuesday patches.
--
Swa Frantzen -- net2s.com
Even though it appears there might be little gain in once again trying to convince people not to email office documents, not to open them, etc. some renewed attention might be required.
If actively exploited unpatched vulnerabilities is the risk level you need before being allowed to act and start to filter, you might have your "go" at this point. The oldest of the 4 vulnerabilities is publicly known since December 5th, 2006. This latest wave of attacks is exploiting a vulnerability that was publicly known since December 10th, 2006.
Let's hope at least some of them get patched in February's Black Tuesday patches.
- Symantec Trojan.Mdropper.X
- Current activity at us-cert
- CVE-2007-0621 was assigned to this on the chance of it being a new issue.
--
Swa Frantzen -- net2s.com
Keywords:
0 comment(s)
×
![modal content]()
Diary Archives
Comments