News

Microsoft Delivers Patches for Office Apps

Macro code-executing vulnerabilities in Word and Excel prompted Microsoft to issue a cumulative patch for the ubiquitous Office applications Wednesday evening.

Patches for four new vulnerabilities were included in Microsoft's latest bulletin: www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/ms02-031.asp.

Microsoft characterized the vulnerabilities as a moderate risk for client systems. The patches also included previously released fixes for Office applications, and Microsoft offered a new download of Office clip art on Wednesday as well.

The delivery mechanism for the patch suffers from a flaw in the Microsoft Installer that means users must have their original Office installation CD or have access to their network installation file to upgrade to the patch.

Three of the newly discovered Macro vulnerabilities involve Excel. One of the vulnerabilities is a variant on the "Word Mail Merge" vulnerability originally patched by Microsoft in 2000. That vulnerability also requires that the Microsoft Access database be present on the target system.

About the Author

Scott Bekker is editor in chief of Redmond Channel Partner magazine.

Featured

  • Microsoft Endpoint Manager Improvements Highlighted at Ignite

    Improvements in the Microsoft Endpoint Manager (MEM) management solution were part of Tuesday's Microsoft Ignite online event.

  • Green City Illustration

    Microsoft Ignite 2020 Reaction, Part 1: A New Normal for Tech Conferences

    Something about Satya Nadella's opening keynote makes Brien wonder if Microsoft thinks we'd all be better off doing everything -- including conferences like Ignite -- remotely, even after the pandemic is over.

  • Microsoft Ignite: Azure Advances Across Five Frontiers

    To kick off the Microsoft Ignite virtual conference, CEO Satya Nadella made a bold claim about the public cloud with the second-largest market share behind Amazon.

  • Microsoft Buying Games Maker ZeniMax Media for $7.5 Billion

    Microsoft is buying ZeniMax Media, parent company of Bethesda Softworks and other game-maker affiliates, for $7.5 billion in cash.

comments powered by Disqus