Help
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.
Posted 02 May 2007 - 07:58 AM
These "Month of" projects, where working exploits are publicly disclosed, often do more harm than good for the cause of security. Private disclosure is a safer method of sharing vulnerabilities with software vendors. The month of May might be more active after some quieter times in the past couple of weeks. Two new MS Office ActiveX weaknesses have been noted as follows:
MOAXB Project - Month of Active X Bugs
http://moaxb.blogspot.com/
Day 1 - Powerpoint vulnerability
http://moaxb.blogspot.com/2007/05/moaxb-01...ewerocx-31.html
http://secunia.com/advisories/25092/
Day 2 - Excel vulernability
http://moaxb.blogspot.com/2007/05/moaxb-02...1-multiple.html
MOAXB Project - Month of Active X Bugs
http://moaxb.blogspot.com/
Day 1 - Powerpoint vulnerability
http://moaxb.blogspot.com/2007/05/moaxb-01...ewerocx-31.html
http://secunia.com/advisories/25092/
Day 2 - Excel vulernability
http://moaxb.blogspot.com/2007/05/moaxb-02...1-multiple.html
Back to top
