{"id":413,"date":"2007-01-11T05:30:39","date_gmt":"2007-01-11T05:30:39","guid":{"rendered":"https:\/\/www.darknet.org.uk\/2007\/01\/microsoft-word-0-day-exploits-questiondoc\/"},"modified":"2015-09-09T19:40:24","modified_gmt":"2015-09-09T11:40:24","slug":"microsoft-word-0-day-exploits-questiondoc","status":"publish","type":"post","link":"https:\/\/www.darknet.org.uk\/2007\/01\/microsoft-word-0-day-exploits-questiondoc\/","title":{"rendered":"Microsoft Word 0-day Exploits &#8211; QUESTION.DOC"},"content":{"rendered":"<p>[ad]<\/p>\n<p>There&#8217;s been quite a few Microsoft related exploits recently, but not in Windows, people have moved their focus towards the application layer and the top of the OSI stack.<\/p>\n<p>This time it was a 0-day Vulnerability in Microsoft Word.<\/p>\n<p>The original news comes from <a href=\"http:\/\/isc.sans.org\/diary.html?storyid=1925\">SANS Internet Storm Center Diary (ISC)<\/a>.<\/p>\n<p>Microsoft has reported Word 2003, Word 2002, Word 2000 and Word Viewer 2003 are reportedly affected.<\/p>\n<p>The vulnerability is being exploited in the wild, the malicious document is called <em>QUESTION.DOC<\/em>.<\/p>\n<p>Password stealing Trojan spreads with this vulnerability, link to the McAfee <a href=\"http:\/\/vil.nai.com\/vil\/content\/v_141057.htm\">PWS-Agent.g<\/a> writeup.<\/p>\n<p><!--adsense#New468--><\/p>\n<p>US-CERT reported today that &#8220;Word fails to properly handle malformed data structures allowing memory corruption to occur&#8221;\u009d. This vulnerability is public <a href=\"http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2006-6456\">CVE-2006-6456<\/a> now.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>[ad] There&#8217;s been quite a few Microsoft related exploits recently, but not in Windows, people have moved their focus towards the application layer and the top of the OSI stack. This time it was a 0-day Vulnerability in Microsoft Word. The original news comes from SANS Internet Storm Center Diary (ISC). Microsoft has reported Word [&hellip;]<\/p>\n","protected":false},"author":25,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_seopress_robots_primary_cat":"","_seopress_titles_title":"","_seopress_titles_desc":"","_seopress_robots_index":"","_genesis_hide_title":false,"_genesis_hide_breadcrumbs":false,"_genesis_hide_singular_image":false,"_genesis_hide_footer_widgets":false,"_genesis_custom_body_class":"","_genesis_custom_post_class":"","_genesis_layout":"","footnotes":""},"categories":[10,4],"tags":[1460,1461,595],"featured_image_src":null,"featured_image_src_square":null,"author_info":{"display_name":"Darknet","author_link":"https:\/\/www.darknet.org.uk\/author\/darknet\/"},"_links":{"self":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/413"}],"collection":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/users\/25"}],"replies":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/comments?post=413"}],"version-history":[{"count":0,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/413\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/media?parent=413"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/categories?post=413"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/tags?post=413"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}