[34262] in bugtraq
RE: MS Word - password protection vulnerabilty
daemon@ATHENA.MIT.EDU (C Ryll)
Fri Mar 26 18:12:10 2004
From: "C Ryll" <carolynryll@hotmail.com>
To: bugtraq@securityfocus.com
Date: Fri, 26 Mar 2004 18:50:22 +0000
Mime-Version: 1.0
Content-Type: text/plain; format=flowed
Message-ID: <BAY17-F13bmNmgHvnRQ00010539@hotmail.com>
So, if I patch, then I cannot bypass the password mechanisms. But if I do
not patch, then I still can... Or does a patched application allow for the
creation of a document in which the security controls cannot be bypassed
using an unpatched MS Word? Can a document from an unpatched application
still be bypassed in a patched MS Word?
It would be interesting to know the depth of patching in this situation.
Kind regards,
Carolyn
>s.zdrojewski@itvirtualcommunity.net
>Sent by:
>"Sebastian \"En3py\" Zdrojewski" <en3py@itvirtualcommunity.net>
>2004-03-26 01:57 AM
>
>
>To: "'Andrew W Barkley'" <abarkle3@csc.com>
>bugtraq@securityfocus.com
>cc: (bcc: Carolyn Ryll/ATL-BTL/MS/PHILIPS)
>Subject: R: UPDATED: MS Word - password protection vulnerabilty
>Classification:
>
>
>
>Actually these problems seems to be solved using SP3 of Office XP
>Published
>on MS04-009.
>
>Cheers
>
_________________________________________________________________
FREE pop-up blocking with the new MSN Toolbar – get it now!
http://toolbar.msn.com/go/onm00200415ave/direct/01/
