Close
  • Latest News
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Cybersecurity
    • Cybersecurity

    New Zero-Day Threat Excels

    By
    Joe Wilcox
    -
    February 5, 2007
    Share
    Facebook
    Twitter
    Linkedin

      Microsoft zero-day vulnerabilities are increasingly so commonplace, the risk is lost with the message. On Feb. 2, Microsoft issued another security alert, this one for Excel, that largely went unnoticed.

      In its security bulletin, Microsoft warned that “other Office applications are potentially vulnerable” to the zero-day flaw.

      Zero-day refers to a flaw for which there is an exploit but no available fix. The Excel vulnerability is Microsofts fifth zero-day exploit since December, and part of an increasingly troubling trend.

      The zero-day flaw affects Office versions 2000, XP, 2003 and 2004 for the Mac, but not 2007 or Works 2004, 2005 or 2006.

      An attacker could exploit the flaw either by enticing a user to click on a file hosted on a Web site or an attachment sent via e-mail. Either exploit would require some end-user interaction.

      The vulnerability poses the greatest risk to users running with Administrator privileges. Successful exploit of the attack would grant the attacker the same user rights as the user. Office running on Windows Vista could be more hardened to the attack, as all users—even those running as Administrators—operate in standard mode.

      Until a patch is released, Microsoft recommends that users avoid opening attachments from “untrusted sources or that you receive unexpectedly from trusted sources.”

      Security software developers are taking the ongoing zero-day flaw problem seriously. On Feb. 6, at the RSA Conference in San Francisco, CA will announce a host-based intrusion prevention system tool for combating zero-day vulnerabilities.

      Trend Micro also is bolstering features, particularly those that detect virus-like behavior.

      “A lot of the zero-days are variants on existing code,” said David Finger, Trend Micros global product marketing manager. “Were able to use a lot of indicators to detect [malicious behavior].”

      Zero-day flaws present unique problems for security software, in part because of the way security signatures are developed and dispatched. Time is another factor. The days are gone when security software developers could respond with patches in a few days.

      “Now, its minutes,” Finger said.

      One response tactic is to harden software against blended attacks, which the new Excel zero-day exploit is good example. Some of that hardening occurs within the operating system, like Microsofts User Account Control feature in Windows Vista, Finger added.

      /zimages/5/28571.gifMicrosoft Word zero-day attack discovered. Click here to read more.

      For Trend Micro and some of its competitors, security software uses heuristics and other techniques to assess virus-like behavior.

      Microsoft is taking the zero-day threat more seriously than ever. Two weeks ago it brought together security experts and botnet hunters to brainstorm responses.

      Still, Microsofts responsiveness to some zero-day exploits falls short of the urgency. During Januarys release of security updates, Microsoft pulled zero-day Word flaws at the eleventh hour. The company next releases security patches on Feb. 23.

      Microsofts untimely response relates to compatibility testing. If a patch breaks enterprise applications, the cure could cause more problems than the zero-day threat.

      Check out eWEEK.coms Security Center for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEKs Security Watch blog.

      Joe Wilcox

      MOST POPULAR ARTICLES

      Android

      Samsung Galaxy XCover Pro: Durability for Tough...

      Chris Preimesberger - December 5, 2020 0
      Have you ever dropped your phone, winced and felt the pain as it hit the sidewalk? Either the screen splintered like a windshield being...
      Read more
      Cloud

      Why Data Security Will Face Even Harsher...

      Chris Preimesberger - December 1, 2020 0
      Who would know more about details of the hacking process than an actual former career hacker? And who wants to understand all they can...
      Read more
      Cybersecurity

      How Veritas Is Shining a Light Into...

      eWEEK EDITORS - September 25, 2020 0
      Protecting data has always been one of the most important tasks in all of IT, yet as more companies become data companies at the...
      Read more
      Cybersecurity

      Visa’s Michael Jabbara on Cybersecurity and Digital...

      James Maguire - May 17, 2022 0
      I spoke with Michael Jabbara, VP and Global Head of Fraud Services at Visa, about the cybersecurity technology used to ensure the safe transfer...
      Read more
      Big Data and Analytics

      GoodData CEO Roman Stanek on Business Intelligence...

      James Maguire - May 4, 2022 0
      I spoke with Roman Stanek, CEO of GoodData, about business intelligence, data as a service, and the frustration that many executives have with data...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2021 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×