Add a deadly zero-day error in Word

On December 10, Microsoft had to confirm another zero-day security error in Word 2003. This is the second security error discovered in Word in less than a week.

Microsoft said this security vulnerability could be exploited by hackers to remotely gain access to the system using faulty versions of Word such as Word 2000, Word 2002, Word 2003 and Word Viewer 2003. make this mistake.

" According to the initial research results, we confirm that this is a completely new security bug. However, the possibility of this error being exploited by targeted attack is relatively limited ."

Security firm Secunia yesterday decided to label this security bug to an "extremely dangerous" level because it is a bug that has not been fixed and has been exploited by hackers to attack users.

According to Secunia, a new security error in Word arises from an error in processing application files. Some people believe that this error is relatively similar to the buffer overflow error detected by eEye security company.

But Microsoft claims that this security flaw is completely different from the Word security flaw discovered last weekend.

To be able to exploit this security error, an attacker must trick users into opening a malicious Word file stored on a web page or sent with an email.

Microsoft has not yet announced any plans to fix this vulnerability.

Hoang Dung