Security News > 2018 > May > Zero-Day Attack Exploits Windows via Malicious Word Doc
2018-05-09 12:03
Microsoft Patches Flaw, Warns It Could Be Exploited via Websites, MalvertisingSecurity alert: Microsoft has issued updates to fix 67 unique flaws in its products. One vulnerability in Windows VBScript engine is already being actively exploited in the wild via malicious Word documents, and could also be employed for attacks via websites and malvertising, Microsoft warns.
News URL
https://www.inforisktoday.com/zero-day-attack-exploits-windows-via-malicious-word-doc-a-10993
Related news
- “Perfect” Windows downgrade attack turns fixed vulnerabilities into zero-days (source)
- Windows vulnerability abused braille “spaces” in zero-day attacks (source)
- New Windows Backdoor BITSLOTH Exploits BITS for Stealthy Communication (source)
- Google fixes Android kernel zero-day exploited in targeted attacks (source)
- Windows Update downgrade attack "unpatches" fully-updated systems (source)
- Windows Downgrade Attack Risks Exposing Patched Systems to Old Vulnerabilities (source)
- Microsoft fixes 6 zero-days under active attack (source)
- New Windows SmartScreen bypass exploited as zero-day since March (source)
- Xeon Sender Tool Exploits Cloud APIs for Large-Scale SMS Phishing Attacks (source)
- Cybercriminals exploit file sharing services to advance phishing attacks (source)