Hackers Using PowerPoint Weakness To Crack Machines

Microsoft has warned customers of a new vulnerability being exploited by hackers.  A security advisory issued late last week, Microsoft warned that hackers could gain compete control over a machine if a user executed an infected PowerPoint presentation.  The vulnerability would allow for remote code execution by the attacker.

“An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights,” the company said. “Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.”
“At this time, we are aware only of limited and targeted attacks that attempt to use this vulnerability,” the company added.

At the time of this article, Microsoft has not issue an immediate patch but expressed the exploit will be fixed with their monthly security update.

Microsoft has instructed users not to open any PowerPoint (.ppt) presentations from unknown people via the Internet or on USB flash drives until they can patch the problem.