New MS Word Zero-day vulnerability for RTF-files
Microsoft has discovered a new critical vulnerability in Word that is being used in attacks. And because newer Outlook version uses Word as its default email viewer, you don't even have to open a RTF document to get infected. It's enough if you receive a specially crafted email and you have the preview function turned on.
"An attacker who successfully exploited the vulnerability could gain the same user rights as the current user"
There is no permanent fix yet, only workarounds:
- A FixIt to disable Word to open RTF-files: https://support.microsoft.com/kb/2953095
- Open emails as plain text: http://support.microsoft.com/kb/307594
- Using the MS Exploit blocker EMET: http://microsoft.com/emet
I've read that other AV's can detect this already. Can F-Secure detect and block this?