iEntry 10th Anniversary RSS Archive

IT Management Begins With Security
SecurityProNews > Insider Reports > Insider > Symantec Finds Microsoft Word Trojan
Search:
[ insider_reports_insider ]

Symantec Finds Microsoft Word Trojan



David Utter
Staff Writer
2006-05-22

SecurityProNews: Insider Reports Insider Reports RSS Feed


The security company advised users of Microsoft Word 2003 that a zero-day exploit has been detected in the wild, and it targets a vulnerability in that program.

Word Trojan Sent to Unsuspecting Users
Word Trojan Sent to Unsuspecting Users

Symantec said its Security Response team discovered the exploit that targets Word 2003. When exploited, the Trojan.Mdropper.H attack drops a piece of malware, Backdoor.Ginwui, onto a PC.

Currently the problematic Trojan has been found as a Word attachment sent via email to unsuspecting users. Symantec said it has observed the Trojan sending information via HTTP to a specific IP address, but has not disclosed any other details about that.

Symantec detected the Trojan in Japan. The New York Times reported that Symantec got the Trojan from "a single large company in Japan." Attackers had already tried to break into PCs at a government agency in Japan by exploiting the flaw.

From the report: In the Japanese case, the Word document actually displayed some text related to a treaty with China, but while the text was displayed, a backdoor was installed on the system, (Vincent Weafer, the senior director at Symantec security response) said.

Symantec also said they know of a single planned attack aimed at compromised machines. "However, with the disclosure of this previously unknown vulnerability, new attackers may begin to exploit it in a widespread manner," Symantec said in an advisory sent to customers.

Microsoft is preparing a patch for Word to close the vulnerability. Currently it is scheduled for the company's next monthly patch update on June 13th. Microsoft could release it sooner should the problem become more widespread.

In an amazing coincidence, Symantec's discovery of the Word 2003 vulnerability and exploit came a day after Symantec sued Microsoft over Windows Vista and the inclusion of Veritas Storage Manager technology. Microsoft responded to that action by noting it had bought all applicable intellectual property rights. from Veritas in 2004.

---
Tags: , ,

Add to Del.icio.us | DiggThis | Yahoo! My Web | Furl

Get all the updates in RSS:




About the Author:
David Utter is a business and technology writer for SecurityProNews and WebProNews.

More insider_reports_insider Articles

SecurityProNews: Insider Reports Insider Reports RSS Feed

Get Your Site Submitted for Free in the World's Largest B2B Directory!

Email Address:
* URL:
*
*Indicates Mandatory Field

Terms & Conditions

iEntry Featured Services: Jayde Member Services | Forums | Freeware | Advertise with Us

Contact Us | Advertise | Newsletter Archive | Sitemap | Submit an Article | News Feeds
SecurityProNews is an iEntry, Inc.® publication - 1998-2009 All Rights Reserved | Privacy Policy and Legal		 Join the WebProWorld Forums: Click Here
Virus Warnings

Subscribe to
SecurityProNews FREE!


[ more newsletters ]

Featured On:
article resources
Search Articles:
[advanced search]

WebProWorld.com
Get in-touch with industry experts and leaders
Post your site for review by expert and peers
Ask Security, IT, Development and Design questions

Free Membership: Join Now!

Visit WebProWorld.com

Titan Quest Forum
The #1 Titan Quest forum
Halo 3 Forum
The best Halo, Halo 2, Halo 3 forum
Nintendo Wii
Nintendo Wii news and views
Mac Software
The best in OS X freeware
Graphics Forum
Your source for graphic tutorials
SecurityProNews.com | Breaking eBusiness News Get Your IT Questions Answered - Click Here SecurityProNews News Feeds