Critical security flaws in Microsoft Office products can affect Windows and Apple Mac users 
(25/03/2008)
Windows and Apple Mac users are urged to take heed of a warning issued by Microsoft of critical security flaws in its Microsoft Office products.
As part of its monthly "Patch Tuesday" schedule Microsoft has issued a number of bulletins about 12 security vulnerabilities in its software. Seven of the vulnerabilities affect Microsoft Excel, and could allow a hacker to gain remote control over a user's computer by a maliciously crafted spreadsheet. Alarmingly, the vulnerability is not just found in the Windows version of Microsoft Excel, but also for Mac Office 2004 and the recently released Office 2008 for Macintosh.
The Excel flaws were discovered in January. Oorganizations should roll-out the patches as a matter of urgency, as some of them could enable hackers to access data on a vulnerable PC or Macintosh, or run malicious code such as a worm.
Other flaws detailed in the Microsoft security bulletins affect other components of the Microsoft Office product suite.
"Windows users may be fairly accustomed to installing patches from Microsoft - but this a timely reminder that Apple Mac users need to be just as diligent when it comes to matters of computer security," said Graham Cluley, senior technology consultant at Sophos. "Whether you run a PC or a Mac it's important to take these latest security bulletins from Microsoft seriously and ensure that your business is properly protected."
Home users of Microsoft Windows can visit update.microsoft.com to have their systems scanned for Microsoft security vulnerabilities.
Every IT manager responsible for security should consider subscribing to vulnerability mailing lists such as that operated by Microsoft at www.microsoft.com/technet/security/bulletin/notify.mspx.
Related topics: Application and software security Computer and PC Security
Print version | 
Email to a friend | 
Related articles
Data breaches: Trends, costs and best practices gives you all the latest information on securing personal and corporate data, key recommendations for immediate action to improve data security, and how to respond to data breaches.
Other Security news and resources
Security News
Suppliers Directory
Jobs forum
Classifieds
Knowledge base
White papers
Research library
Security books
Special reports
Security interviews
Security companies
Security events
Security links
Security market
Product channels
Access Control Biometrics CCTV Intruder Alarms IT Security Manned Guarding Perimeter Protection Physical Security Remote Monitoring Security Services Fire, Health & Safety Other Security Products
IT Security white papers and research library
Access Control Authentication Data Management Data Security Digital Signatures Email Security Identity Management Internet Security Intrusion Prevention Network Security Remote access security Security Management Security Policies Security Software Security Threats Virus Detection Software Virus Protection VPN Vulnerability Assessment Wireless Security
Security books, guides, standards and toolkits
RFID and Smart Cards books, guides and reference documents Biometric books, guides and reference documents CCTV books, guides and reference documents Intruder alarms and intrusion detection systems books, guides and reference documents Monitoring and surveillance books, guides and reference documents IT Governance, ISO 27001 ISO 17799 and BS 7799 toolkits Fire, Health & Safety books, guides and reference documents
