Security 10808 Published by

Hole being hit by targeted attacks from the Middle East and South Asia     



From V3:
Microsoft Trustworthy Computing (TwC) has released a workaround fix for a vulnerability in older versions of its Office, Lync and Windows Server services.

TwC group manager of response communications, Dustin Childs announced the workaround fix in a blog post. "We are aware of targeted attacks, largely in the Middle East and South Asia," he noted.

"While we are actively working to develop a security update to address this issue, we encourage our customers concerned with the risk associated with this vulnerability, to [...] apply the Microsoft Fix it solution, disable the TIFF Codec that prevents exploitation of the issue [and] deploy the Enhanced Mitigation Experience Toolkit (EMET)."

  Microsoft releases workaround fix for Office, Lync and Windows Server exploit