Microsoft looking into WordPad zero-day flaw

Microsoft is investigating reports of a flaw in the WordPad Text Converter for Word 97 files, the company said on Tuesday. A Microsoft blog stated "we are aware of very limited and targeted attacks seeking to exploit this vulnerability."

On Wednesday security researchers reported finding a zero-day flaw affecting Microsoft Internet Explorer 7.

According to Microsoft Security Advisory 960906, the flaw only affects users of Windows 2000 Service Pack 4, Windows XP Service Pack 2, Windows Server 2003 Service Pack 1, and Windows Server 2003 Service Pack 2. This issue does not affect Windows XP Service Pack 3, Windows Vista, and Windows Server 2008.

When Microsoft Office Word is installed, Word 97 documents are set by default to open using Microsoft Office Word. Microsoft said Word is not affected by this vulnerability. However, an attacker could rename any malicious file to have a Windows Write (.wri) extension; the malicious file could invoke WordPad. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user.

The flaw cannot be exploited automatically through e-mail, however. For an attack to be successful, a user must open an e-mail attachment. Microsoft notes that the .wri file type can be blocked at the Internet perimeter.

Microsoft issued its standard disclaimer stating it is investigating the issue and would act upon completion of that investigation. Among the solutions, Microsoft could issue a service pack, include a bulletin in its next monthly security update, or issue an out-of-cycle security update depending on the severity of the issue.

[Mr. Dee]

I am using Windows 7, so I am more than safe. :)

[Dalkorian]

lol

[Hep Cat]

It's funny - I could have sworn I read an article on C|Net yesterday that said this sort of thing isn't Microsoft's fault.

[Vegaman_Dan]

*.wri files? Wow, that's pretty obsolete. I wasn't aware anyone even used those. The world works with TXT and DOC files. WRI?

Might want to try to go for something a little more mainstream.

[timber2005]

But they couldn't explot those ;)

Microsoft engineers are hard at work as I type working on a text virus. It is about the only file type left they haven't created one for.

[ncaissie]

Your an idiot

[jinx101a]

I second ncaissie's thoughts.

[timber2005]

And while Microsoft is doing that, we are attemptnig to educate our youth so they don't end up as pitiful as you.

Microsoft engineers developing a virus... they have better things to do.

[patch991]

Here, here!!

[timber2005]

The solution to me seems simple.
If they are using Win2000, Sever 2003 (any SP), Microsoft needs to put out an extra security update to patch the flaw.
If they are using XP (SP0-SP2), tell them to upgrade to SP3. It's been out a year, time to move up.
Though taking the bits out of SP3 and making them a patch for this wouldn't be hard, it just seems redundant when someone does upgrade to SP3. Its supposed to be a rollup of patches and other fixes, not a bunch of fixes cut up for users who can't commit to the full package. (It does help companies though).