Security Protection – Harry Waldron MVP Rotating Header Image

Malware – Word RTF attack circulating MAR2014

A new RFT exploit has surfaced and is circulating in the wild on limited and targeted attack basis.  Users should be careful with any WORD document they may receive unexpectedly (even from trusted sources). As the “Rich Text Format” can be saved with RTF, DOC, and DOCX extensions, any word document may be potentially infected.

https://technet.microsoft.com/en-us/security/advisory/2953095

http://www.theregister.co.uk/2014/03/24/microsoft_rtf_vuln/

http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1761

QUOTE: Microsoft has warned its Word software is vulnerable to a newly discovered dangerous bug – which is being exploited right now in “limited, targeted attacks” in the wild. There is no patch available at this time. The flaw is triggered by opening a maliciously crafted RTF document in the Microsoft Office word processor, or opening it via Outlook, and allows the attacker to execute arbitrary code on the machine. The hole was disclosed by Microsoft on Monday outside the monthly Patch Tuesday cycle. Opening a poisoned Rich Text File (RTF) document allows the attacker to hijack the PC with the same privileges as the logged-in user.

Comments are closed.