Microsoft Word - Second new vulnerability and exploit
Posted
Monday, December 11, 2006 11:56 AM
by
hwaldron
This new threat is not circulating extensively yet and updating to the latest levels of AV (plus always being careful with suspicious attachments) will help mitigate this new exposure. 
Microsoft Word - Second new vulnerability and exploit
http://www.incidents.org/diary.php?storyid=1925
QUOTE: We received notification from an ISC participant that McAfee has released a dat today for protection against a buffer overflow attack in MS Word. The announcement says "Note: This vulnerability was first found through one of the samples that McAfee analyzed, and this vulnerability differs from the "Microsoft Word 0-Day Vulnerability I" that was published on December 5, 2006.".
McAfee information on Word Exploit II
http://vil.nai.com/vil/content/v_vul27249.htm
QUOTE: A vulnerability exists in Microsoft Word that could allow for arbitrary code execution. This could be exploited successfully if a victim were to open a specially crafted Word document obtained via an email attachment or downloaded from a malicious website.
New Word Exploit II Protection - DAT 4915
http://vil.nai.com/vil/content/v_141056.htm
MSRC Commentary on New Word Exploit
http://blogs.technet.com/msrc/archive/2006/12/10/new-report-of-a-word-zero-day.aspx
QUOTE: We are investigating reports of another new vulnerability in Microsoft Word – initial investigation has shown that this is a different issue to that reported in Microsoft Security Advisory 929433. Our initial investigation has discovered that Word 2000, Word 2002, Word 2003 and the Word Viewer 2003 are affected, but Word 2007 is NOT affected by the vulnerability.
Secunia
http://secunia.com/advisories/23205/
FRSirt
http://www.frsirt.com/english/advisories/2006/4920