Menu
Microsoft discloses zero-day flaw, publishes quick fix

Microsoft discloses zero-day flaw, publishes quick fix

Attacks are under way using PowerPoint file, the company said

Microsoft has published a temporary fix for a new zero-day flaw that affects nearly all versions of Windows and is currently being exploited via PowerPoint.

The flaw affects all Windows releases except Windows Server 2003, the company wrote in an advisory Tuesday. It can be exploited if a user is coaxed into opening a malicious Office file containing an OLE (object linking and embedding) object. OLE can allow a user to edit a PowerPoint file from within a Word document, for example.

"At this time, we are aware of limited, targeted attacks that attempt to exploit the vulnerability through Microsoft PowerPoint," the company said.

A successful attacker would gain the same rights as a logged-in user and could put other programs on an infected computer. Microsoft said some attacks that compromise accounts without administrator rights may pose less of a risk.

The fix, which Microsoft calls the "OLE packager shim workaround," is for 32- and 64-bit versions of PowerPoint 2007, 2010 and 2013.

Microsoft said attacks could take place via email, with the attacker sending a potential victim a malicious file or by luring a person to a compromised website containing "specially crafted content."

"An attacker would have to persuade the targeted user to visit the website, typically by getting them to click a hyperlink that directs a web browser to the attacker-controlled website," Microsoft wrote.

The User Account Control feature in Windows will display a consent or elevation prompt during an attack, depending on the privileges of the user before the malicious file is run, Microsoft said. UAC is enabled by default on Vista and newer OSes.

Earlier this month, on Patch Tuesday, Microsoft released eight security bulletins, which fixed three zero-day vulnerabilities at the same time, a rare occurrence.

Send news tips and comments to jeremy_kirk@idg.com. Follow me on Twitter: @jeremy_kirk

Follow Us

Join the New Zealand Reseller News newsletter!

Error: Please check your email address.

Tags patchesMicrosoftsecurityExploits / vulnerabilities

Slideshows

Top 50 defining moments of the New Zealand channel in 2016

Top 50 defining moments of the New Zealand channel in 2016

Reseller News looks back on a tumultuous 12 months for the New Zealand channel, assessing the fallout from a year of sizeable industry change. Whether it be local or global mergers and acquisitions, distribution deals or job changes, the channel that started the year differs somewhat to the one set to finish it - Reseller News assesses the key moments that made 2016.​

Top 50 defining moments of the New Zealand channel in 2016
​Hewlett Packard Enterprise honours high achieving NZ channel

​Hewlett Packard Enterprise honours high achieving NZ channel

Hewlett Packard Enterprise honoured its top performing Kiwi partners at the second running of its HPE Partner Awards in New Zealand, held at a glitzy ceremony in Auckland. Recognising excellence across eight categories - from distributors to resellers - the tech giant celebrated its first year as a standalone company, following its official split from HP in 2015.

​Hewlett Packard Enterprise honours high achieving NZ channel
Nutanix treats channel partners to Christmas cruise

Nutanix treats channel partners to Christmas cruise

Nutanix recently took to the seas for a Christmas Cruise around Sydney Harbour with its Australia and New Zealand staff, customers and partners to celebrate a stellar year for the vendor. With the sun out, they were all smiles and mingled over drinks and food.

Nutanix treats channel partners to Christmas cruise
Show Comments