Microsoft Releases Urgent Fix
Microsoft has released an emergency fix for a critical vulnerability in Microsoft Office and some operating systems. The fix applies to Windows Vista and Windows Server 2008, Microsoft Office 2003 through 2010, and all supported versions of Microsoft Lync.
According to Microsoft, “The exploit requires user interaction as the attack is disguised as an email requesting potential targets to open a specially crafted Word attachment. If the attachment is opened or previewed, it attempts to exploit the vulnerability using a malformed graphics image embedded in the document. An attacker who successfully exploited the vulnerability could gain the same user rights as the logged on user.”
As usual users should be cautious about attachments that seem suspicious. For those running any of the systems or software mentioned above, a link to the fix and Microsoft’s Enhanced Mitigation Experience Toolkit can be found below.