Four other flaws being fixed had been previously disclosed but not exploited two involving the optional 3D Viewer software, the other two involving the always troublesome Remote Desktop Protocol.Īs always, you'll want to install Microsoft security patches in a timely manner. The other zero-day flaw being currently exploited has to do with Microsoft Exchange Server, software that companies running Microsoft email systems use. If you're using Microsoft Office 2019 or LTSC 2021 on a Mac, don't open any Excel files that come from sources you don't know, including links to Excel files posted online, until Microsoft pushes out a patch for Macs as well. How to protect yourself from this exploit CVE-2021-42296 (opens in new tab) is a Word RCE flaw and affects only enterprise versions of Office. There seem to be two related flaws that have not yet been exploited in the wild, although now that the secret's out it may just be a matter of time.ĬVE-2021-40442 (opens in new tab) is an Excel remote code execution (RCE) flaw, and its patch is also not available for Microsoft Office 2019 for Mac and Microsoft Office LTSC for Mac 2021. Regular consumer versions of Office 2021 for Mac or PC, released just last month, weren't listed as vulnerable by Microsoft's advisory. But the flaw has been patched in older Windows versions of Microsoft Office, including Office 2013, Office 2016, Office 2019, Office LTSC 2021 and Microsoft 365.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |