Skip to main content
  1. Home
  2. Computing
  3. News

Microsoft warns of hacks against multiple Windows, Office versions

Konrad Krawczyk
By
new office 365 update skydrive skype 20gb microsoft logo
Image used with permission by copyright holder

If you use aged versions of Windows or Microsoft Office, be on the lookout; Redmond issued a security warning today.

In their latest Security Advisory report, Microsoft states that they are investigating reports of vulnerabilities in multiple versions of Windows Vista, Windows Server 2008 and Microsoft Office. They’re also aware of “targeted attacks” that try to take advantage of a security hole in Office.

Recommended Videos

Here’s how Microsoft describes the vulnerability:

Related

“[It’s] a remote code execution vulnerability that exists in the way affected components handle specially crafted TIFF images. An attacker could exploit this vulnerability by convincing a user to preview or open a specially crafted email message, open a specially crafted file, or browse specially crafted web content. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.”

The report indicates that a hacker who attacks a PC using this vulnerability could gain the same rights to the machine that the user has, even administrative rights. However, the hacker would also be bound do whatever restrictions the user is limited to in the event that they do not have administrative rights access. Hackers could also attack a machine with this vulnerability if a user clicked an affected link in an email or instant message, or opened a tainted email attachment.

Microsoft says that they are working with partners in this investigation and could choose to address the issue by releasing an update. The update may fall in line with Microsoft’s monthly update schedule, though the report states that the patch could be released “out-of-cycle.” Which route Microsoft goes depends on “customer needs.”

Click here to see the report, and a complete list of the affected Microsoft software.

Editors' Recommendations

Topics
Konrad Krawczyk
Konrad Krawczyk
Former Digital Trends Contributor
Konrad covers desktops, laptops, tablets, sports tech and subjects in between for Digital Trends. Prior to joining DT, he…
How to factory reset Windows 10 or Windows 11
Windows 10 Home vs. Pro

Factory resetting Windows 10 or Windows 11 can be a great way to fix a sluggish or unresponsive computer. It clears our a lot of changes you might have made, applications that might be causing trouble, and old drivers that might not have been uninstalled properly. A fresh start can make your PC feel even better than general Windows speed up tricks.

Here's how to factory reset Windows 10 and Windows 11 to get your PC feeling right again.

Read more
How to find your Windows 11 product key
Windows 11 on a tablet.

Your Windows 11 product key is an important piece of information for your PC. One can think of this long batch of characters as the golden ticket to your Windows 11 experience. And not only does a product key give you access to the full breadth of your PC’s features, but it’s also a digital gatekeeper that won’t let you in if you didn’t properly pay for Windows 11.

Read more
How to remove a login password on Windows 11
A padlock surrounded by keys.

Your password is the first line of defense for your Windows 11 PC, as it protects your files and your important information from being accessed by unauthorized users. But there are some instances where you might want to remove a login password in Windows.

One such instance is when you’re sharing a PC with someone and don’t necessarily have anything that’s private on your system. Though we don’t recommend it, removing the password can also mean faster logins to your PC.

Read more