Pair of Office XP Bugs Uncovered | eWeek

Pair of Office XP Bugs Uncovered

Écrit par
Dennis Fisher
Dennis Fisher
Apr 1, 2002
2 minute read
eWeek Le contenu et les recommandations de produits sont indépendants de la rédaction. Nous pouvons gagner de l'argent lorsque vous cliquez sur des liens vers nos partenaires. En savoir plus

A well-known security researcher has released an advisory about–and exploit code for–two new unpatched flaws in portions of Microsoft Corp.s Office XP application suite.

The two bugs are closely related and, if used in concert, could enable an attacker to gain complete control over a vulnerable machine.

The first vulnerability is a problem with the way that Outlook 2002 handles active content objects that are embedded in HTML mail messages. If a user replies to or forwards a message with such an object in it, the active content would automatically execute on the users machine, according to an advisory released Sunday by Georgi Guninski, a Bulgarian security consultant famous for finding dozens of vulnerabilities in Microsoft products over the past several years.

The second flaw is a problem with the Host () function of the spreadsheet component in Office XP. The vulnerability allows users to create files with arbitrary names, regardless of their content. An attacker using the Outlook 2002 flaw in conjunction with this vulnerability may be able to place an executable file on the users machine, which could give him control over the PC.

Guninski said in his advisory that on March 17 he notified Microsoft, of Redmond, Wash., of the vulnerabilities. He decided to release his advisory after the company failed to produce a patch after two weeks. Microsoft security officials in the past have criticized Guninski for going public too quickly with his findings and for over-hyping problems that they dont feel warrant much attention.

Last week, Guninski released information on another Microsoft vulnerability, this one in Internet Explorer. The flaw involves a problem in the way that the OLE DB Web publishing tool interacts with IIS 5.0 and Exchange 2000, and in specific circumstances could allow an attacker to see the IIS directories of arbitrary Web servers.

Guninski posted his advisory, complete with a sample exploit, to the Bugtraq mailing list, and it also appeared on at least one other list over the weekend.

Related stories:

  • IEs Handling of Cookies Flawed
  • Microsoft Patches Critical Flaws
eWeek Logo

eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site's focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

Propriété de TechnologyAdvice. © 2026 TechnologyAdvice. Tous droits réservés

Divulgation publicitaire : Certains des produits qui apparaissent sur ce site proviennent d'entreprises dont TechnologyAdvice reçoit une compensation. Cette compensation peut influencer la façon dont les produits apparaissent sur ce site, notamment l'ordre dans lequel ils apparaissent. TechnologyAdvice n'inclut pas toutes les entreprises ou tous les types de produits disponibles sur le marché.