Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Warns of Zero-Day Attacks

Posted by Soulskill on from the welcome-to-tuesday dept.

wiredmikey writes "Microsoft released an advisory today warning users about a new zero-day under attack in targeted campaigns occurring in the Middle East and South Asia. According to Microsoft, the vulnerability resides in the Microsoft Graphics component and impacts certain versions of Windows, Microsoft Office and Lync. The problem exists in the way specially-crafted TIFF images are handled. To exploit the vulnerability, an attacker would have to convince a user to preview or open a specially-crafted email message, open a malicious file or browse malicious Web content. If exploited successfully, the vulnerability can be used to remotely execute code. The vulnerability affects Office 2003, 2007 and 2010 as well as Windows Server 2008 and Windows Vista. Right now, Microsoft Word documents are the current vector for attack."

2 of 165 comments (clear)

  1. Re:Already there by mstefanro · · Score: 3, Interesting

    I have been saying this for ages. It is embarassing that the concept of "antivirus" still exists.
    Its main purpose is to enforce a huge blacklist of .exe files that can harm you. Instead
    of keeping track of million of apps that are evil, why not just apply some least privilege
    principles and sandboxing already so that we can run an application without granting it
    access to all our resources?

    It comes as no surprise that everything gets moved to the web nowadays. One can safely
    open a website without worrying that all his personal data can be accessed (such as Firefox
    stored passwords). On the other hand, opening an application requires complete trust in the author,
    which is simply too much to ask most of the time. Look how well "apps" have evolved in mobile
    platforms. It is quite natural to prefer apps to websites, because it can be easier to have something run on startup
    and be easily accessible whenever you want, as opposed to having to go through a browser. They
    generally have less overhead and are more powerful. If Windows had a decent package manager
    and proper privilege separation we would probably be living in a different world today.

    For anyone who claims stuff like "but Windows has UAC", obligatory xkcd: http://xkcd.com/1200/

  2. Re:New Attack? 0 Day? by Anonymous Coward · · Score: 5, Interesting

    TIFF is a scary format in general because it's been extended in so many bizarre ways to support document mangagement systems. For ex, there's actually a standard for embedding PDFs inside of a TIFF (rather than visa-versa).