reghakr
New member
Microsoft Office Web Components Zero Day
Date:07.14.2009
Threat Type: Malicious Web Site / Malicious Code
Websense Security Labs ThreatSeeker is currently tracking exploit sites related to a new zero-day vulnerability in Microsoft Office Web Components. CVE-2009-1136 has been allocated to this vulnerability. The vulnerable component is an ActiveX object used by Internet Explorer to display and publish spreadsheets, charts, and databases to the Web. Microsoft Security Advisory 973472 offers a workaround for the zero-day and further technical information can be found on Microsoft's Security Research and Defense blog.
Details and Links
Additional Info:
http://isc.sans.org/diary.html?storyid=6778
http://www.microsoft.com/technet/security/advisory/973472.mspx
http://blogs.technet.com/msrc/archive/2009/07/13/microsoft-security-advisory-973472-released.aspx
http://www.eweek.com/c/a/Security/Microsoft-Warns-of-New-Attack-as-Patch-Tuesday-Nears-854317/
http://www.scmagazineus.com/Another-ActiveX-zero-day-bug-from-Microsoft/article/139939/
http://www.h-online.com/security/Microsoft-warns-of-vulnerability-in-Office-Web-Component--/news/113752
http://voices.washingtonpost.com/securityfix/2009/07/microsoft_newly_discovered_ms.html
http://www.computerworld.com/s/article/9135471/Microsoft_admits_new_ActiveX_zero_day_bug?source=rss_security
Date:07.14.2009
Threat Type: Malicious Web Site / Malicious Code
Websense Security Labs ThreatSeeker is currently tracking exploit sites related to a new zero-day vulnerability in Microsoft Office Web Components. CVE-2009-1136 has been allocated to this vulnerability. The vulnerable component is an ActiveX object used by Internet Explorer to display and publish spreadsheets, charts, and databases to the Web. Microsoft Security Advisory 973472 offers a workaround for the zero-day and further technical information can be found on Microsoft's Security Research and Defense blog.
Details and Links
Additional Info:
http://isc.sans.org/diary.html?storyid=6778
http://www.microsoft.com/technet/security/advisory/973472.mspx
http://blogs.technet.com/msrc/archive/2009/07/13/microsoft-security-advisory-973472-released.aspx
http://www.eweek.com/c/a/Security/Microsoft-Warns-of-New-Attack-as-Patch-Tuesday-Nears-854317/
http://www.scmagazineus.com/Another-ActiveX-zero-day-bug-from-Microsoft/article/139939/
http://www.h-online.com/security/Microsoft-warns-of-vulnerability-in-Office-Web-Component--/news/113752
http://voices.washingtonpost.com/securityfix/2009/07/microsoft_newly_discovered_ms.html
http://www.computerworld.com/s/article/9135471/Microsoft_admits_new_ActiveX_zero_day_bug?source=rss_security
Last edited:
My Computer
- Computer Manufacturer/Model Number
- Cheap $399.00 E-Machine
- OS
- Windows 7 Pro & Vista Home Premium
- CPU
- Athlon 64 3800+ (Orleans) 2.40GHz
- Motherboard
- Winfast
- Memory
- 2GB DDR2 RAM DIMM
- Graphics Card(s)
- NVIDIA GeForce 8500 GT 512 MB memory HDMI out
- Sound Card
- creative X-Fi Exteme 7..1 channel
- Monitor(s) Displays
- Acer V223W 22" widescreen DVI
- Screen Resolution
- 1680x1050
- Hard Drives
- WDC WD5 500GB
WDC WD25 250GB
- PSU
- OCZ 550 watt
- Case
- Gateway
- Cooling
- 2 fans
- Keyboard
- Dell
- Mouse
- Sony Vaio
- Internet Speed
- 18MB/s down - .72MB /s up
