Big Microsoft Office vulnerability discovered

Bradley Prior

Bradley Prior

MyBroadband Journalist
Staff member
Super Moderator
Joined
Oct 16, 2018
Messages
5,008
Reaction score
1,580
Big Microsoft Office vulnerability discovered

Mimecast Research Labs has uncovered a significant bug in Microsoft Office products, which has since been patched by Microsoft.

In a blog post, Mimecast explains that the vulnerability is likely to have caused the “widespread, unintended leakage of sensitive information in millions of previously created Office files”.
 
Ooops, someone found it - "We had to fix another backdoor".
 
However, Mimecast recommends removing or re-saving files created by vulnerable versions of Office as these files may still be compromised.
Click to expand...

o_O

Even after updating to apply the patch, all old MSO documents have to be opened and saved using the patched version?

Is that to reduce the risk on unpatched PCs in case the old files end up on an unpatched PC, or am I missing the purpose of this seemingly pointless advice?
 
sajunky said:
Ooops, someone found it - "We had to fix another backdoor".
Click to expand...
This was just a decoy... The real backdoor is still in place. And they've put them into Linux as well now since they contribute to the kernel
 
j4ck455 said:
o_O

Even after updating to apply the patch, all old MSO documents have to be opened and saved using the patched version?

Is that to reduce the risk on unpatched PCs in case the old files end up on an unpatched PC, or am I missing the purpose of this seemingly pointless advice?
Click to expand...
The leaked memory data is stored inside the old documents. Resaving them with a patched version cleans that up.
 
ToxicBunny said:
This was just a decoy... The real backdoor is still in place. And they've put them into Linux as well now since they contribute to the kernel
Click to expand...
Canonical? Before they put Ubuntu on the wrong GUI path, now they are openly colaborating with Microsoft. But it is not about Linux kernel itself, as an open source project, it makes things difficult to hide.
 
sajunky said:
Canonical? Before they put Ubuntu on the wrong GUI path, now they are openly colaborating with Microsoft. But it is not about Linux kernel itself, as an open source project, it makes things difficult to hide.
Click to expand...

Did I mention Canonical at all?

Difficult to hide is not a problem when you have as many good devs as MS...
 
like terabytes of office files that need to be saved over again ...right lol
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X