These "Month of" projects, where working exploits are publicly disclosed, often do more harm than good for the cause of security. Private disclosure is a safer method of sharing vulnerabilities with software vendors. The month of May might be more active after some quieter times in the past couple of weeks. Two new MS Office ActiveX weaknesses have been noted as follows:
MOAXB Project - Month of Active X Bugs
http://moaxb.blogspot.com/
Day 1 - Powerpoint vulnerability
http://moaxb.blogspot.com/2007/05/moaxb-01...ewerocx-31.html
http://secunia.com/advisories/25092/
Day 2 - Excel vulernability
http://moaxb.blogspot.com/2007/05/moaxb-02...1-multiple.html
Page 1 of 1
Moaxb Project - Month Of Active X Bugs
Share this topic:
Page 1 of 1

Help



Back to top








