Serious Security Bug In Microsoft Word and Microsoft MSN Messenger *update w/patch*

[CTho9305]

Here is the link to the problem description. get your patches (when Microsoft gets around to releasing them)!

Here is more description of the problem

There is no patch currently available for Microsoft Word or Microsoft MSN Messenger.

***UPDATE:*** MS Patch.

 

[Barnaby W. Füi]

But it's a firefox bug!

 

[n0cmonkey]

Heh, of course.

 

[skace]

So wait, A malicious hacker could write up a malicious word document with a link that, when clicked, opens up a text file forcing my workstation to open notepad?! Am I understanding this right....

 

[CTho9305]

Originally posted by: skace
So wait, A malicious hacker could write up a malicious word document with a link that, when clicked, opens up a text file forcing my workstation to open notepad?! Am I understanding this right....

It's just as bad as the Mozilla "Serious Security Bug". You can do a shell:foo.grp, where "foo" is a really long string, and then, as described here, the program windows launches has a buffer overflow in the code that reads the filename passed to it. I tried it myself and successfullly crashed the msgrp.exe application, though I don't feel like consturcting an actual malicous string as that would take a long time, and prove nothing.

If this isn't a serious bug, Ameesh needs to edit his thread topic, since it's no more serious in Mozilla's product, and his post is libelous.

 

[AnthraX101]

Originally posted by: CTho9305

Originally posted by: skace
So wait, A malicious hacker could write up a malicious word document with a link that, when clicked, opens up a text file forcing my workstation to open notepad?! Am I understanding this right....

It's just as bad as the Mozilla "Serious Security Bug". You can do a shell:foo.grp, where "foo" is a really long string, and then, as described here, the program windows launches has a buffer overflow in the code that reads the filename passed to it. I tried it myself and successfullly crashed the msgrp.exe application, though I don't feel like consturcting an actual malicous string as that would take a long time, and prove nothing.

If this isn't a serious bug, Ameesh needs to edit his thread topic, since it's no more serious in Mozilla's product, and his post is libelous.

You were correct with your first statement. It is a variant of the same underlying bug that was "patched" in Firefox.

AnthraX101

 

[n0cmonkey]

Another example of why a "secure by default" mentality is IMPORTANT!

 

[AFB]

Originally posted by: n0cmonkey
Another example of why a "secure by default" mentality is IMPORTANT!

Another BSD fanboy

 

[n0cmonkey]

Originally posted by: amdfanboy

Originally posted by: n0cmonkey
Another example of why a "secure by default" mentality is IMPORTANT!

Another BSD fanboy

I just know what works the best.


For me.

 

[AFB]

Originally posted by: n0cmonkey

Originally posted by: amdfanboy

Originally posted by: n0cmonkey
Another example of why a "secure by default" mentality is IMPORTANT!

Another BSD fanboy

I just know what works the best.


For me.

:beer:

 

[Bloodstein]

Originally posted by: BingBongWongFooey
But it's a firefox bug!

Firstly, whether or not the bug is of firefox or the underlying operating system is up for debate (Interesting point: the same firefox program on linux doesn't produce the bug ). Secondly, the topic here is not the bug in firefox but MSN/Word. How you managed to link the bug in MSN/Word to firefox is totally beyond my imagination. It's a bug in MSN & Word whether you have Firefox or not!

 

[AFB]

Originally posted by: Bloodstein

Originally posted by: BingBongWongFooey
But it's a firefox bug!

Firstly, whether or not the bug is of firefox or the underlying operating system is up for debate (Interesting point: the same firefox program on linux doesn't produce the bug ). Secondly, the topic here is not the bug in firefox but MSN/Word. How you managed to link the bug in MSN/Word to firefox is totally beyond my imagination. It's a bug in MSN & Word whether you have Firefox or not!

lol, He was being sarcastic.

 

[spyordie007]

Fixed in one of Microsoft's updates released yesterday:
http://www.microsoft.com/technet/security/bulletin/ms04-024.mspx

 

[Ulukai]

Originally posted by: Bloodstein

Originally posted by: BingBongWongFooey
But it's a firefox bug!

Firstly, whether or not the bug is of firefox or the underlying operating system is up for debate (Interesting point: the same firefox program on linux doesn't produce the bug ). Secondly, the topic here is not the bug in firefox but MSN/Word. How you managed to link the bug in MSN/Word to firefox is totally beyond my imagination. It's a bug in MSN & Word whether you have Firefox or not!

As amdfanboy said he was being sarcastic, go read the Firefox bug thread

Also it's pretty easy to link the firefox and MSN/Word bugs since it's the same damn bug! The Firefox patch just prevents people exploiting this bug in Windows through Firefox.