You are here: silicon.com > Software > Security Strategy

"Critical" Office update on the way

Plus patches for Windows...

Tags: flaw, patch, microsoft office, office

By Dawn Kawamoto

Published: 8 September 2006 09:15 GMT

Microsoft plans to release a "critical" security update for Office next week, one of three bulletins it will distribute as part of its monthly patch cycle.

The other two updates are for Windows and are rated as "important", its second-highest ranking, the software giant said in an advisory on Thursday. The brief advisory is designed to give IT administrators advance notice to prepare for the patches once they are distributed.

Further details about the flaws will be posted on Microsoft's security website, once the bulletins are issued on Tuesday morning.

Microsoft has had its share of zero-day exploits, or malicious software released the same day a flaw is made public, in applications in Office. Earlier this week, Microsoft's Word 2000, which is part of the productivity suite, was hit with a zero-day attack that could compromise systems remotely. The vulnerability can be exploited by the user opening a malicious document.

And in July, an Excel vulnerability was the target of a zero-day attack. In that case, a system was at risk if a user opened a malicious Excel database document.

Dawn Kawamoto writes for CNET News.com

Add comment

Print story with

Email story

Vista already on the Redmond patch treadmill

Microsoft: Another patch comes unstuck

Porn spam spike due to Windows hole - CipherTrust

IE patch causes more bother

Microsoft fixes faulty IE patch

Windows attack worm warning

Alert over "extremely critical" Word flaw

In silicon.com

Commentary

Clive Longbottom Windows 7: Not perfect - but ready for prime time Microsoft's latest OS fixes most of Vista's ills - but still has challenges ahead

Stephen Kleynhans Mind the details with Windows 7 Just because it might work better than Vista, it doesn't mean you can be sloppy

Latest News

Bletchley Park's World War Two codebreakers in their own words

'You're responsible for your own wi-fi security' say ISPs

'UK must up privacy safeguards following Phorm'

The top 10 technologies you need to plan for next year

Windows 7: Who's adopting it, when and why?

Jobs

Security Operations Centre Manager (SOC Manager), SC Security Cleared

Basic awareness of computer based vulnerability analysis testing. Moderate awareness of computer based vulnerability analysis testing. Basic ...

Security Analyst CONTRACT

Other responsibilities include: Implementing preventative measures; minimising business disruption; minimising risk of security attack, malicious ...

Web Applications Vulnerability Tester

Title: Web Applications Vulnerability Tester / Penetration Tester Salary: market rates but probably 40k to 60k Company: online / ecommerce company ...

Special Report Focus

Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.