Detection of critical vulnerabilities in Word 2007

20th April 2007

Hardly has resounded Microsoft`s “Tuesday Patch” with the elimination of several serious vulnerabilities, as there has appeared information of new vulnerabilities in Microsoft Office 2007, and more precisely, in one of its programs - Word 2007. Microsoft answered very quickly. Software giant has said that it had not received any reports of new bugs, besides the IT-community is used to report about failures first to the developer, and only then publish this information in the Internet. Therefore, Microsoft can`t confirm the fact of discovery of new vulnerabilities at the moment. According to sources that have found errors, under risk is the gap in Word, which leads to 100% loading of the processor, and may cause DDoS (distributed denial of service). One more vulnerability can cause the launch of malicious code on the remote computer. At least, Microsoft admitted that one of the mistakes that have been declared may exist indeed. This is an error of memory at startup of help file with .hlp completion. In light of possible problems with the help files, Microsoft “pleased” its users, reporting that the files with .hlp completion are not at all stable.