Re: Microsoft 0-day word vulnerability - Secunia - Extremely critical

[Andrew Simmons <asimmons@xxxxxxxxxxxxxxx>]

Hi Ryan
Ryan Buena wrote:
> Source: http://secunia.com/advisories/23232/
>
> Does anybody have any more detailed information on specifics about
> this vulnerability? There is very little detail concerning this. 


SANS/ISC piece:
http://isc.sans.org/diary.php?storyid=1913

Microsoft Advisory:
http://www.microsoft.com/technet/security/advisory/929433.mspx


A couple of lines on the MSRC blog about "reported PoC"; also mentions 
"limited attacks attempting to use the vulnerability":

http://blogs.technet.com/msrc/archive/2006/12/06/microsoft-security-advisory-929433-posted.aspx


cheers

\a
--
Andrew Simmons // MessageLabs Security Team
Technical Security Consultant
MessageLabs: Be certain

______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email 
______________________________________________________________________