Vulnerability in Microsoft graphics component could allow remote code execution

by George Chetcuti [Published on 6 Nov. 2013 / Last Updated on 6 Nov. 2013]

Microsoft is aware of a vulnerability in previous versions of Office that is actively exploited in targeted attacks using crafted Word documents sent by email. The vulnerability will not affect Office 2013 but will affect older versions such as Office 2003 and 2007.

Until Microsoft works on a final update user are urged to read Security Advisory 2896666 which includes a proactive Fix it workaround for blocking this attack.

Read Security Advisory 2896666 here - https://support.microsoft.com/kb/2896666

Read more here - http://blogs.technet.com/b/srd/archive/2013/11/05/cve-2013-3906-a-graphics-vulnerability-exploited-through-word-documents.aspx

Add Review or Comment

See Also

Featured Links