Microsoft builds a sandbox for Office 2010

Discussion in 'other security issues & news' started by ronjor, Jul 24, 2009.

Thread Status:
Not open for further replies.
  1. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,740
    Location:
    Texas
    The H Security
     
  2. funkydude

    funkydude Registered Member

    Joined:
    Apr 5, 2004
    Posts:
    6,852
    Brilliant news, thank you :thumb:

    Any news on any kind of beta?
     
  3. Pedro

    Pedro Registered Member

    Joined:
    Nov 2, 2006
    Posts:
    3,502
  4. Kees1958

    Kees1958 Registered Member

    Joined:
    Jul 8, 2006
    Posts:
    5,857
    Some data formats also contain small parts of programming code, have macro's wiritten in VBA, some contain meta data with code in it, some are in a format which also contains code, how much variations do you want?
     
  5. Rmus

    Rmus Exploit Analyst

    Joined:
    Mar 16, 2005
    Posts:
    3,943
    Location:
    California
    See this thread:

    https://www.wilderssecurity.com/showthread.php?t=245775

    Note that by using the .rtf extension, the attack can run from within MSWord, or Wordpad, if MSWord is not installed, as in the case with aigle.

    Here is an old article, describing another means of using Office documents to drop malware:

    Microsoft Office Security, part one
    http://www.securityfocus.com/infocus/1874

    ----
    rich
     
Loading...
Thread Status:
Not open for further replies.