A new vulnerability has been identified in Microsoft Word. According to security analysts at MicroWorld Technologies, exploits for the vulnerability are out already, which can successfully thrust Trojan Downloaders into user computers.
Microsoft says that it is investigating the vulnerability that exists in Microsoft Word 2000, 2002 and 2003, Word Viewer 2003, Word 2004 for Mac, and Word v. X for Mac, as well as Microsoft Works 2004, 2005, and 2006.
According to MicroWorld, a specially crafted Word file carrying a Trojan Dropper named 'MSWord.Agent' can push Trojan downloaders into victim's computers. The Trojans deposited in this way can log on to predefined Web sites and bring dangerous malwares like Backdoors and Rootkits into a victim's computer.
"One stream of malware writers are quite enthusiastic about exploring application software vulnerabilities, as they think that it is a lot easier and rewarding than getting into the OS level intricacies," comments Sulabh Mahant, of MicroWorld Technologies.
In the last year, MicroWorld Technologies says that it has detected many vulnerability exploits aimed at MS Word files. While 'Win32.Mdropper' and 'MSWord.1Table.bd' were Trojan Droppers that transported back doors into targeted computers, a recently detected macro virus was primarily acting as a vehicle for password stealing Trojans.
By ICTWorld, 12 December 2006
cyber crime cybercrime
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment