Technical Cyber Security Alert TA06-139A

最新推荐文章于 2024-09-25 23:43:47 发布
最新推荐文章于 2024-09-25 23:43:47 发布
阅读量1.4k 收藏
点赞数
文章标签: security microsoft office powerpoint extension buffer
Technical Cyber Security Alert TA06-139Aarchive

Microsoft Word Vulnerability

Original release date: May 19, 2006
Last revised: --
Source: US-CERT

Systems Affected

  • Microsoft Word 2003
  • Microsoft Word XP (2002)

Microsoft Word is included in Microsoft Works Suite and Microsoft Office. Other versions of Word, and other Office programs may be affected or act as attack vectors.


Overview

A buffer overflow vulnerability in Microsoft Word could allow an attacker to execute arbitrary code on a vulnerable system.


I. Description

Microsoft Word contains a buffer overflow vulnerability. Opening a specially crafted Word document, including documents hosted on web sites or attached to email messages, could trigger the vulnerability.

Office documents can contain embedded objects. For example, a malicious Word document could be embedded in an Excel or PowerPoint document. Office documents other than Word documents could be used as attack vectors.

For more information, please see Vulnerability Note VU#446012.


II. Impact

By convincing a user to open a specially crafted Word document, an attacker could execute arbitrary code on a vulnerable system. If the user has administrative privileges, the attacker could gain complete control of the system.


III. Solution

At the time of writing, there is no complete solution available. Consider the following workarounds:
Do not open untrusted Word documents

Do not open unfamiliar or unexpected Word or other Office documents, including those received as email attachments or hosted on a web site. Please see Cyber Security Tip ST04-010 for more information.

Do not rely on file extension filtering

In most cases, Windows will call Word to open a document even if the document has an unknown file extension. For example, if document.d0c (note the digit "0") contains the correct file header information, Windows will open document.d0c with Word.


Appendix A. References


Information used in this document came from SANS and Microsoft.

Feedback can be directed to US-CERT.

Produced 2006 by US-CERT, a government organization. Terms of use

Revision History

May 19, 2006: Initial release

iiprogram
关注
ISC2---CyberSecurity课程笔记---第四章:网络安全
caoxiaoye的博客
08-28 819
让我们更详细地了解一下计算机网络和网络安全。在当今世界,互联网几乎连接了每个人和一切,这是通过网络实现的。虽然大多数人认为计算机网络是一个积极的,但犯罪分子经常使用互联网和网络协议本身,作为武器和工具来利用漏洞,出于这个原因,我们必须尽最大努力保护网络。我们将回顾网络的基本组成部分,网络的威胁和攻击,并学习如何保护它们免受攻击者的攻击。网络安全本身可以是网络安全中的专业职业;然而,所有信息安全专业人员都需要了解网络的运行方式和如何被利用,以更好地保护网络的安全。
Cybersecurity Challenges In The Uptake Of Artifitial Intelligence in Autonomous Driving [1]
weixin_40928171的博客
05-17 1651
• State-of-the-art literature survey on AI • Mapping of AVs’ functions to their respective AI techniques • Analysis of cybersecurity vulnerabilities • Presentation of possible attack scenario • Presentation of challenges and corresponding recommendations
ISC2---CyberSecurity课程笔记---第三章、访问控制
caoxiaoye的博客
08-22 522
ISC2-CyberSecurity课程笔记
The security economics of large-scale attacks against Internet-connected ICS devices
工控小白2021的博客
12-03 2835
我的PLC何时支持Mirai?针对互联网连接的ICS设备的大规模攻击的安全经济学
(五)NIST CSF-附录A:框架核心
云上笛暮
10-12 1162
本附录介绍了框架核心:描述所有关键基础设施部门常见的特定网络安全活动的功能、类别、子类别和参考资料清单。为框架核心选择的表示格式并不表明具体的实现顺序,也不暗示类别、子类别和信息参考的重要性程度。本附录中提出的框架核心代表了管理网络安全风险的一组常见活动。虽然该框架不是详尽的,但它是可扩展的,允许组织、部门和其他实体使用具有成本效益和效率的子类别和信息性参考,并使它们能够管理其网络安全风险。在概要文件创建过程中,可以从框架核心中选择活动,并可以向概要文件添加额外的类别、子类别和信息性引用。组...
The Definitive Security Data Science and Machine Learning Guide
omnispace的博客
06-21 1977
This is the Definitive Security Data Science and Machine Learning Guide. It includes books, tutorials, presentations, blog posts, and research papers about solving security problems using data science
Remarks on Cyber at the RSA Conference
天之枫 的专栏
03-06 1269
Remarks on Cyber at the RSA ConferenceAs Delivered by William J. Lynn, III, San Francisco, California, Tuesday, February 15, 2011Thank you again to RSA for recognizing the Defense Department’s contributions to cyber policy.This is without question the most
过程分析对进行有针对性ICS攻击的意义
工控小白2021的博客
03-15 7253
On the Significance of Process Comprehension for Conducting Targeted ICS Attacks一、摘要二、介绍(一)实验台(二)准备阶段(三)信息获取三、实验评估(1)基于网络的MITM攻击(二)基于主机的MITM攻击四、总结 一、摘要 本文通过使用一个测试平台环境,提供了两个基于中间人场景的实际示例,展示了攻击者需要获取、整理和理解的信息类型,以便开始有针对性的程序操作和避免检测。这使我们能够更清楚地了解相关的挑战,并说明为什么针对ICS的
VNC Performance Monitoring: Real-Time Monitoring of Performance Metrics for VNC Remote Access
VNC (Virtual Network Computing) is a remote desktop protocol that enables users to view and operate graphical user interfaces over the network on remote computers. VNC technology allows users to ...
INTRODUCTION TO THE LAW OF VIRTUAL AND AUGMENTED REALITY
weixin_42786150的博客
02-15 3670
PART I INTRODUCTION TO THE LAW OF VIRTUAL AND AUGMENTED REALITY 1. The law of virtual reality and increasingly smart virtual avatars Woodrow Barfield and Alexander Williams 1. INTRODUCTION Advances in virtual and augmented reality technology, a
微软 Win11 RP 226x1.4247(KB5043145)预览版发布!
lihuiyun184291的博客
09-24 254
系统之家于9月25日发出最新报道,微软面向Release Preview频道的用户发布了Win11的KB5043145更新。系统更新后版本号提升为22621.4247和22631.4247。此次更新新增多项功能,例如用户播放媒体时,媒体控件会显示在锁屏中央的下部。以下跟随小编看看详细的更新内容!
AgentScope中带有@功能的多Agent组对话
消极的人永远是对的,积极的人选择勇往直前
09-22 999
演示由AgentScope支持的多代理(agent)群组对话。
猿大师办公助手在线编辑Office为什么要在客户端电脑安装插件微软Office或金山WPS?
猿大师办公助手官方博客
09-20 522
猿大师办公助手作为一款专业级的网页编辑Office方案,与在线云文档方案(飞书、腾讯文档等)不同,需要在客户端电脑安装猿大师办公助手插件及微软Office或者金山WPS软件,很多客户不理解为什么要这么麻烦,能否客户端电脑不安装任何插件,或者把直接插件安装在服务器上,客户端电脑直接就可以使用在线编辑Office功能?
Parasoft助力Joby Aviation符合DO-178B标准
09-19 978
Parasoft作为领先的软件测试解决方案提供商,与Joby Aviation携手,确保了Joby Aviation的软件系统达到并超越ASIL最高安全等级要求,为eVTOL飞行器的安全飞行奠定了坚实的基础。
Linux终端简介
最新发布
C_eeking的博客
09-25 867
本章基本是以一个简单的用户交互程序作为基准,随后逐步拓宽,最后完成一个功能较为齐全的C语言交互程序,涉及到的知识点有输入输出模式、termios结构等
生成PPT时支持上传本地的PPT模板了!
2401_84001276的博客
09-23 410
你可以轻松上传自己的本地 PPT 模板,无论是公司统一风格的模板,还是带有个人设计风格的模板,都能无缝导入歌者 PPT。其中,PPT 图文页(内容页)的排版版式较多,只需选择排版最简单的图文页即可。上传完成后,AI 会自动识别封面页、章节页、图文页和结尾页,核对下这些页面的识别是否正确。2. 生成后的 PPT,还可以直接在线修改图片和文字,内容页的排版还能在「版式库」中随时切换调整,真正做到灵活又个性化!登录歌者 PPT,进入「我的模板」页面,点击「上传模板」,将你本地的 PPT 模板上传。
《AI办公类工具PPT系列之六——轻竹办公》
再见孙悟空的专栏
09-24 252
轻竹办公PPT|AI自动生成PPT_Word文档转PPT_海量PPT模版_在线PPT制作_智能生成PPT_一键生成PPT_智能生成演讲稿_AIPPT轻竹办公PPT是一款结合人工智能技术专为PPT制作而设计的办公工具,旨在简化和加速PPT的创建过程。用户只需输入标题,AI便会在几十秒内生成所有PPT文案,并自动套用模板在线预览效果,最后秒速一键下载为ppx文件。轻竹办公适合各种场合的PPT制作,无论是企业报告、学术讲座还是个人演示,都能提供快速、高质量的解决方案。AI一键生成PPT。
The Journal of Cybersecurity is a peer-reviewed academic journal that focuses on the study of cybersecurity and related topics. The journal publishes original research articles, review articles, and short communications in the field of cybersecurity, including topics such as cybercrime, data protection, network security, cryptography, and digital forensics. The Journal of Cybersecurity is an important resource for researchers, practitioners, and policy makers in the field of cybersecurity, providing them with up-to-date information on the latest developments and best practices in the field. 翻译一下
02-13
《网络安全期刊》是一份同行评审的学术期刊,专注于研究网络安全及相关主题。该期刊发表原创性研究文章、评论文章和短篇通讯,涵盖网络安全领域的各个主题,如网络犯罪、数据保护、网络安全、密码学和数字取证。...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值