Make Homepage | Add To Favorites | Print Page | Submit News | Feedback | Contact | 

Your Technical Computer Information Resource!  
     
 
Keep TACKtech.com free by purchasing something from our sponsors.
Make a financial contribution
  Technical Updates @ TACKtech Corp.  

10.17.2002 - MS02-059: Flaw in Word Fields and Excel External Updates Could Lead to Information Disclosure (330008)



View Microsoft-Office related news. It is possible to maliciously use field codes and external updates to secretly steal information from a user. Certain events can trigger the external update and the field code to be updated: for example, when the user saves a document or manually updates the links. Typically, the user is aware of these updates when they occur. However, a specially crafted field code or external update can be used to trigger an update without any indication to the user. This can permit an attacker to create a document that, when opened, updates itself to include the contents of a file from the user's local computer.

- View Microsoft Security Bulletin MS02-059
- View Microsoft Knowledge Base Article - 330008
- Visit Microsoft Corporation

NID: 302 / Submitted by: Travis
Categories: Microsoft, Patches and Updates
Most recent Microsoft-Office related news.
Update for Microsoft Office Outlook 2007 Junk Email Filter (December 2010) (KB2466076)
MS09-030 - Important: Vulnerability in Microsoft Office Publisher Could Allow Remote Code Execution (969516)
MS09-017 - Critical: Vulnerabilities in Microsoft Office PowerPoint Could Allow Remote Code Execution (967340)
MS09-009 - Critical: Vulnerabilities in Microsoft Office Excel Could Cause Remote Code Execution (968557)
MS09-010 - Critical: Vulnerabilities in WordPad and Office Text Converters Could Allow Remote Code Execution (960477)
View archive of Microsoft-Office related news.

Visit the TACKtech Shop
  Popular Tech News  
  Most Viewed News  
  Top Affiliates  
........