Patches for four new vulnerabilities were included in Microsoft's latest bulletin: www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/ms02-031.asp.
Microsoft characterized the vulnerabilities as a moderate risk for client systems. The patches also included previously released fixes for Office applications, and Microsoft offered a new download of Office clip art on Wednesday as well.
The delivery mechanism for the patch suffers from a flaw in the Microsoft Installer that means users must have their original Office installation CD or have access to their network installation file to upgrade to the patch.
Three of the newly discovered Macro vulnerabilities involve Excel. One of the vulnerabilities is a variant on the "Word Mail Merge" vulnerability originally patched by Microsoft in 2000. That vulnerability also requires that the Microsoft Access database be present on the target system.
About the Author
Scott Bekker is editor in chief of Redmond Channel Partner magazine.
Let's walk through what to do and what you should avoid when group policy structures get a bit complicated.
Microsoft on Wednesday confirmed that it has addressed a so-called "BingBang" security issue that affected "small number of our internal applications" due to Azure Active Directory authorization misconfigurations.
Microsoft acknowledged that its emerging AI-based Bing search could affect content publisher revenue models, but also suggested that it is willing to talk terms.
Microsoft gave notice to organizations using perpetual-license Office versions about a coming 2023 milestone that could result in iffy Microsoft 365 services connections in this Wednesday announcement.
Microsoft's ongoing layoffs are hitting its home turf, with new notices affecting 1,248 people in the Redmond, Bellevue and Issaquah, Wash. areas in May.
More Tech Library