Security Vulnerability Research & Defense : May 2008

(Special thanks to Neil Carpenter for helping out on this blog post) Recent Trends Beginning late last year, a number of websites were defaced to include malicious HTML <script> tags in text that was stored in a SQL database and used to generate

Posted by swiblog | (Comments Off)

Filed under: Attack, SQL Injection

Tuesday, May 13, 2008 10:15 AM

MS08-026: How to prevent Word from loading RTF files

This month we released an update for Microsoft Word that fixed issues relating to loading RTF files (CVE-2008-1091) and HTML files (CVE-2008-1434). Office applications like Microsoft Word can load a large variety of different file formats, and some people

Posted by swiblog | (Comments Off)

Filed under: Office, Workarounds

Security Vulnerability Research & Defense

This Blog

Syndication

Search

News

Blogroll

Report a Vulnerability to Microsoft

Tags

Recent Posts

Archives

May 2008 - Posts

SQL Injection Attack

MS08-026: How to prevent Word from loading RTF files