Security patch for Microsoft Word helps protect against attacks

Here’s a New Year’s resolution for all chief information security officers: make sure you install the latest security patches for Microsoft Word. The company warns that hackers are exploiting a vulnerability for which a patch was issued in November. The bug affects the Windows versions of Word 2002, 2003, 2007 and 2010. Computerworld reports, the attack uses a malicious Rich Text Format file to generate a stack overflow in Word. Then the attack code downloads and runs a Trojan horse on the compromised computer.

This story is part of Federal News Radio’s daily Cybersecurity Update brought to you by Tripwire. For more cybersecurity news, click here.