![]() ![]() "This won't happen in the foreseeable future, but when it does, the vast majority of Office vulnerabilities would be mitigated by technology like this," Bryant said. On Tuesday, for example, Microsoft patched that could be used to hijack a PC with malformed files.Īt some point, the Office team plans to issue "signatures" so OVE can detect newly-discovered file format vulnerabilities, then push the document into Protected View (in Office 2010) or warn the user (Office 2003, 2007).īryant declined to set a timeline for the updates, which would be analogous to the signature updates regularly provided for antivirus software - but said they would definitely not go live when Office 20 receive the OVE upgrade next year. The company said that more than 80% of all Office security cases would have been handled by OVE if it had been in place throughout the suite's versions.įile format vulnerabilities - exploited by specially crafted documents - have long plagued Office, and remain the top threat to users. Microsoft decided to backport OVE to Office 20 after analyzing about four years' worth of data. ![]() Users can click through the warning to continue opening the file, Bryant said. However, rather than opening suspicious files in a sandbox, which neither of the older suites have, OVE in Office 20 will trigger an alert that warns the user that the document could be dangerous. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |