- Bank Web sites full of security holes
- SCO Group: Its future is all used up
- Maligned feature being added to IPv6
- I returned my iPhone 3G after six days!
- VPNs: Six burning questions
News | Newsletters | Podcasts | Chats | Opinions | RSS Feeds | This Week In Print | IT Careers | Community | Reports | Downloads | Slideshows | New Data Center
Partner Sites:App Performance | On Demand Security | Networking Solution | SOA | Value of WDS
Security experts have warned that malicious Microsoft Excel documents are making the rounds via e-mail, exploiting an unpatched Excel vulnerability that has been known publicly since January. (Compare Patch and Vulnerability Management products)
The attacks come as Microsoft prepares to release several critical patches affecting every supported version of Office. The patches are believed to include a fix for the Excel bug.
Security organization US-CERT issued a warning this week on a Trojan exploiting the Excel bug.
"This Trojan is circulating through email messages that contain attached Excel files," US-CERT said in an advisory. "Known file names for these attachments are OLYMPIC.XLS and SCHEDULE.XLS. These files may also contain Windows binary executables that can compromise an affected system."
Maarten Van Horenbeeck, handler with the SANS Institute's Internet Storm Center (ISC), confirmed the attacks and said SANS had been tracking several exploits over the last few days.
"It should be noted that the incidents we are aware of have been limited to a very specific targeted attack and were not widespread," Horenbeeck said in an advisory. "In total, we established approximately 21 reports of attacks using only 8 different files, from within the same two communities, so far."
Some of the sample Trojans connect back to a server to retrieve the IP address of the control server, Horenbeeck said.
Microsoft first acknowledged the unpatched bug in January, in Security Advisory 947563.
The bug affects Excel 2003 Service Pack 2, Excel Viewer 2003, Excel 2002, Excel 2000, and Excel 2004 for Mac, Microsoft said. Successful attacks give the attacker the same rights as the local user.
This week Microsoft plans to ship four "critical" security fixes. The number of security bulletins Microsoft plans to issue is substantially below last month's 11 but the Office-only nature of the updates is unusual.
Of the planned patches, one appears to be for an Excel file format flaw and a second also relates to the spreadsheet application, while the third deals with a bug in Office Web Components -- controls that let users publish spreadsheets, charts and databases to the web, then view that content once it's published.
Rss FeedRss Feed
If the IT manager is knowledgeable regarding Cisco technology, he would have 2 options. Option 1 - Consult...- Anonymous
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 |
Copyright © 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask to prospective vendors to get the right endpoint solution.
Download the white paper.
Unauthorized applications: Taking back control
Employees installing and using unauthorized applications like IM, VoIP, games and peer-to-peer file-sharing applications cause many businesses serious concern. How do you control these applications?
Download the white paper.
Comment