Scott's Weblog The weblog of an IT pro specializing in virtualization, networking, open source, and cloud computing

PowerPoint Zero-Day Exploit

The zero-day exploit takes advantage of a previous unknown vulnerability in PowerPoint to install a Trojan Horse application. The vulnerability affects PowerPoint 2000, 2002, and 2003 running on various flavors of Microsoft Windows; it is unclear at this time whether Macintosh versions of Office are affected. Based on what is known of exploit, it seems unlikely that Macs could be affected by the exploit, but that is not to say that the vulnerability doesn’t exist in the Mac versions of Office. (Keep in mind that a vulnerability isn’t the same as an exploit.)

More information is available at the following links:

Simple filtering for PowerPoint files at the perimeter based on file extension is insufficient; Windows will open files in PowerPoint if they have a correct PowerPoint file header but an incorrect extension. If your anti-virus vendor has released updates to check for infected/affected PowerPoint documents, be sure to install that update and vigorously check all incoming PowerPoint documents.

Now that Word, Excel, and PowerPoint have all had their zero-day exploits, which Office application is next?

Be social and share this post!