|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: (New ?) Macro security hole in Word 97
From: Bongard, Dominique (Bongard.Dominique
PMINTL.CH)Date: Fri Jul 21 2000 - 02:46:45 CDT
- Next message: Jeremy Epstein: "Re: Microsoft Security Bulletin (MS00-043)"
- Previous message: Scott Morris: "Jakarta-tomcat.../admin"
- Next in thread: Kuo, Jimmy: "Re: (New ?) Macro security hole in Word 97"
- Reply: Kuo, Jimmy: "Re: (New ?) Macro security hole in Word 97"
- Reply: Bronek Kozicki: "Re: (New ?) Macro security hole in Word 97"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hi,
I find something very annoying yesterday, and I found no reference about it
on security lists. So I will share it here.
System used: NT4.0, word97
Temp directory: C:\temp
What I did is create a word document with an AutoOpen macro.
I then saved the file in the temp and renammed it in :
C:\temp\Auto_Recovery_Of_something.asd
I then closed the session.
When the next user on my station opened word, the file was automatically
opened, and the macro executed without asking for any confirmation.
Has anyone ever heard of this one ?
Dominique Bongard
----------------------------------------------------------
"They that can give up liberty to obtain a little temporary safety deserve
neither liberty or safety" Benjamin Franklin
- Next message: Jeremy Epstein: "Re: Microsoft Security Bulletin (MS00-043)"
- Previous message: Scott Morris: "Jakarta-tomcat.../admin"
- Next in thread: Kuo, Jimmy: "Re: (New ?) Macro security hole in Word 97"
- Reply: Kuo, Jimmy: "Re: (New ?) Macro security hole in Word 97"
- Reply: Bronek Kozicki: "Re: (New ?) Macro security hole in Word 97"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]