Microsoft today has supplied a new security advisory (Microsoft Security Advisory 4053440) giving guidance and steps to ensure that Office documents remain secure during transmission when they contain Dynamic Data Exchange (DDE) fields.
The company doesn’t go into great detail about why the advisory has been issued, only gives specific registry value changes that need to be made to ensure security for each Office product. You can bet that the advisory has a purpose and its possible that there are active exploits already being observed.
The mitigation does result in reduced functionality, but the advisory outlines that, too.
Looking for an awesome, no-nonsense technical conference for IT Pros, Developers, and DevOps? IT/Dev Connections kicks off in Dallas, Texas in 2018!