Representatives Corporation reported that the bug is already in operation, but only in a limited number of attacks. The error occurs in Windows Vista, Windows Server 2008, Windows 7, Windows 8, Windows Server 2012 and Windows RT. XP version is not mentioned, because Microsoft does not support it more, but it can also be given vulnerability.
If properly take advantage of a bug, an attacker can gain access to the system for any type of account that uses the PC owner. If it is an administrator account, the hacker gets the possibility administrator can install applications that execute code and other actions.
The flaw is in the OLE-system PowerPoint, which allows you to embed a spreadsheet into a presentation. In Microsoft stated that the compromised presentation sent to the user via email. The company advised to ignore documents for PowerPoint from questionable sources.
See more at: http://malwarelist.net/2014/10/22/cve-2014-6352-critical-vulnerability-in-microsoft-windows/
No comments:
Post a Comment