YOUR IT - Technology for you

No. 1 Story

Mobile operators get fixed price spectrum renewal in $3b Government windfall

The Government has offered Australia's three mobile operators, and vividwireless, renewal of their existing spectrum allocated on 15 year licences in the late 90s and early 2000s at set prices, while the Government expects to rake in $3 billion.

 read more
StumbleUponSubmit to redditShare this on TwitterShare on facebook | Print |PDF 

More From

Jet vulnerability under attack

Stephen Withers
Tuesday, 25 March 2008 01:57

Your IT - Home IT

Page 2 of 2
Symantec has now shown that it is possible to rename the malicious file with a 'safe' extension to get around Outlook (etc), and to create a Word file to open the file with Jet. Florio explains that for this technique to work, both files must be in the same folder - but "putting both files in the same .zip archive before sending the mail may be enough" to bring about that situation.

Microsoft Office 365 Get your free Trial
The exploit Symantec has seen uses files named Nokia_7650_video_en.doc and v_080310.asd.

Until a patch is available, Microsoft suggests users consider temporarily disabling Jet, blocking .mdb attachments not only by extension but by looking for signature strings at a certain offset, and avoid opening Word files received from untrusted sources or unexpectedly received from trusted sources.

That patch may be delivered as part of a regular Patch Tuesday update, or if considered sufficiently important, as an out-of-cycle update.

Loading comments ...


Start 1 2 Next 

Sponsored Announcements

Kordia To Deploy ComOps Best Practice Safety and Risk Management Platform

David Bass | ComOps, a leading Australian provider of business software products and services, has won a competitive tender to deploy its Salvus safety, r…

You may have missed


Advertisement

- sponsored feature -

The Death of Traditional BI: What’s Next?

How to Make Business Discovery Work for Your Business IP PABX BUYING GUIDE

Business Discovery takes its cues from consumer apps. Like Google, it encourages us- ers to hunt for and explore data without worrying about or even noticing the underly- ing technology. Their entire experience is working within an intuitive interface to get real-time, self-service results with only minimal training. ...more

Our Services for Technology Professionals

E - mail News SMS Headlines Desktop Alerts News Feeds Job Alerts Technology Events Press-Releases