[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Microsoft Word 0-day Vulnerability (September) FAQ document available

To: bugtraq@xxxxxxxxxxxxxxxxx, full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] Microsoft Word 0-day Vulnerability (September) FAQ document available
From: Juha-Matti Laurio <juha-matti.laurio@xxxxxxxx>
Date: Tue, 5 Sep 2006 03:11:15 +0300 (EEST)

New FAQ document about the recently discovered 0-day vulnerability in Microsoft 
Word is available.
This vulnerability has been reported especially in Office 2000 on Windows 2000 
machines.
Possible other Office versions are affected as well.

This vulnerability is being exploited by Trojan from Mdropper family, but the 
newest information states dependencies to Mofei worm
(reported in the wild in2003 already).
Names as W32/MoFei.worm, W32.Femot.Worm etc. has been assigned.

The document entitled as Microsoft Word 0-day Vulnerability FAQ - September 
2006, CVE-2006-xxxx is located at my SecuriTeam Blogs section,
http://blogs.securiteam.com/?p=586

The CVE name will be added to the document when it is available.

- Juha-Matti

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] [SECURITY] [DSA 1168-1] New imagemagick packages fix arbitrary code execution
Next by Date: Re: [Full-disclosure] TTG0602 - Alt-N WebAdmin MDaemon Account Hijacking
Previous by thread: [Full-disclosure] [SECURITY] [DSA 1168-1] New imagemagick packages fix arbitrary code execution
Next by thread: [Full-disclosure] HITBSecConf2006 Final Call !
Index(es):
- Date
- Thread