[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Office 2000 Vulnerability

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: Re: [Full-Disclosure] Office 2000 Vulnerability
From: Nick FitzGerald <nick@xxxxxxxxxxxxxxxxxxx>
Date: Thu, 11 Sep 2003 01:12:34 +1200

"Michael De La Cruz" <delacruzma@xxxxxxx> wrote:

>      Do any of you have some information on the latest MS Office 
> vulnerability?  I just read that an exploit has been released.  ...

Well, some PoC exploit details were available in some of the discoverer 
advisories and there was a "broken WP document file" generator posted 
to this list (or Bugtraq -- I forget) a day or two back.

> ...  I guess this 
> means network administrators have a small window of time to start patching 
> up systems before a virus is released.  Does anyone know of a work around 
> when updating Office 2000 with an update?  It asks for the original CD that 
> Office was installed from.  Any thoughts?

Go get the CD from the software safe??

Regards,

Nick FitzGerald

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] Office 2000 Vulnerability
  - From: Dave Howe

References:
- [Full-Disclosure] Office 2000 Vulnerability
  - From: Michael De La Cruz

Prev by Date: Re: [Full-Disclosure] Bill Gates blames the victim
Next by Date: Re: [Full-Disclosure] Re: InlineEgg library release
Previous by thread: [Full-Disclosure] Office 2000 Vulnerability
Next by thread: Re: [Full-Disclosure] Office 2000 Vulnerability
Index(es):
- Date
- Thread