Results 1 to 9 of 9

Thread: MS Office Security Tool

  1. #1
    Senior Member nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,188

    MS Office Security Tool

    Microsoft today released a free tool for enterprises and developers that detects whether an Office file contains malicious content.
    You can get it here:

    Microsoft Office Visualization Tool (OffVis). A free tool designed to help combat file format-based software vulnerabilities and exploits, OffVis will allow customers to better understand and deconstruct Microsoft Office-based attacks. As a result, security vendors can build deeper, more precise malware detection signatures and develop new techniques for analyzing malware. The tool is available for no-charge download.



    Sorry folks, I have downloaded it but haven't had a chance to play yet

  2. #2
    Banned
    Join Date
    Jan 2008
    Posts
    605
    Useless crap. Who the hell would abuse a buffer overflow in MS office when the pdf format can be used to exploit flaws in adobe reader straight through everyone's browsers instead.

  3. #3
    lol ..
    Parth Maniar,
    CISSP, CISM, CISA, SSCP

    *Thank you GOD*

    Greater the Difficulty, SWEETER the Victory.

    Believe in yourself.

  4. #4
    Senior Member nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,188
    when the pdf format can be used to exploit flaws in adobe reader straight through everyone's browsers instead.
    OMG!!!!! you mean you still have Adobe software installed on your machine?

    Who the hell would abuse a buffer overflow in MS office
    Someone who knows what they are doing
    Last edited by nihil; July 28th, 2009 at 01:57 PM.

  5. #5
    Banned
    Join Date
    Jan 2008
    Posts
    605
    Not really... what are people more likely to click? The executable or the readme?

  6. #6
    Senior Member nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,188
    The people I know would go for the executable............reading instructions is a sign of weakness.

    Personally, I never click on .pdf stuff on a website.

    However, that sort of misses my whole point, which to some extent is illustrated in the article in this thread:

    http://antionline.com/showthread.php?t=278339

    Basically there is a whole raft of obsolete software (OS and applications) still in regular use. In particular Microsoft Office applications, as most people only perform very basic functions with it, and don't see any benefits in paying Microsoft a small fortune for the latest version that doesn't really do anything for them functionality wise.

    I personally know lots of people who still use Office 97 and Office 2000, even though they are no longer supported, and I do suggest O-O 3.1

    It is my suspicion that there is a veritable orchard of low hanging fruit out there, just waiting to be picked.

    Another consideration is that MS Office documents are well known and tend to be more unquestioningly trusted than .pdf ones. I know of plenty of organisations where I could totally ban .pdf and it would have no effect on their efficiency and effectiveness whatsoever. On the other hand, if I blocked MS Office it would cripple them.

    I do not believe that cybercriminals are techno-snobs............they will use any method they think might work and they doubtless target their victims quite carefully, if only by group.

  7. #7
    Only african to own a PC! Cider's Avatar
    Join Date
    Jun 2003
    Location
    Israel
    Posts
    1,683
    Hmm blocking Pdf's here will certainly shut us down 0_o ...
    The world is a dangerous place to live; not because of the people who are evil, but because of the people who don't do anything about it.
    Albert Einstein

  8. #8
    Senior Member nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,188
    OK..............(and DO NOT run this past your bosses!)

    Your company uses .pdfs to the extent that their exclusion would shut you down?................errrrrrrrrrrrrr?

    How come your product doesn't take up the slack and fix the issue(S)?


  9. #9
    Only african to own a PC! Cider's Avatar
    Join Date
    Jun 2003
    Location
    Israel
    Posts
    1,683
    lol

    Well seeing as though we are an ADOBE distributor ...

    See the irony ? :P
    The world is a dangerous place to live; not because of the people who are evil, but because of the people who don't do anything about it.
    Albert Einstein

Similar Threads

  1. Best Security Websites
    By AngelicKnight in forum Newbie Security Questions
    Replies: 37
    Last Post: June 28th, 2004, 01:29 PM
  2. Windows 2000 Tips
    By Nokia in forum Tips and Tricks
    Replies: 0
    Last Post: June 12th, 2004, 05:13 PM
  3. NEWS: This weeks security news.
    By xmaddness in forum Security News
    Replies: 1
    Last Post: August 15th, 2002, 03:07 AM
  4. NEWS: This week in Security
    By xmaddness in forum Miscellaneous Security Discussions
    Replies: 0
    Last Post: July 31st, 2002, 09:35 PM
  5. NEWS: This weeks security news.
    By xmaddness in forum Miscellaneous Security Discussions
    Replies: 0
    Last Post: July 25th, 2002, 03:05 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •