Zero-day attack in Microsoft Word launched after Patch Tuesday

Microsoft has warned of a flaw in Word that is currently being exploited in the wild; the advisory comes just a couple of days after Security Patch Tuesday.

The zero-day attack affects Microsoft Office 2000 and Office XP; in order for an attack to be carried out the user has to open a rigged Office file.

In the security advisory that the company has released, it's said that a patch is already in development.

The flaw is not found in Office 2007, Office 2003, and Word 2003 Viewer.

Attacks of this nature are becoming increasingly common after Patch Tuesday, as hackers know it is prime time for causing havoc before the next patch can be released.

In the latest round of security updates, Microsoft fixed nine other Office problems, five of which were security holes.


>