Bugtraq mailing list archives

Re: MSword execution of dlls

From: Ben Greenbaum <bgreenbaum () SECURITYFOCUS COM>
Date: Fri, 23 Feb 2001 10:04:31 -0700

Yes, there are several ways to execute code from Word locally, many
obscure or even completely undocumented (and a few probably completely
unintentional). However I don't see the need to inundate bugtraq with the
lists of them that are being submitted, as they do not in and of
themselves constitute a risk. If people have specific examples of
scenarios where a lock-down procedure or product fails to block access to
something that is supposed to be blocked, that is a different matter, but
please do not submit things that only give you the same access level you
already have :)

Thank you,
Ben Greenbaum
Director of Site Content
SecurityFocus
http://www.securityfocus.com

Current thread:

MSword execution of dlls Anders Ingeborn (Feb 22)
- Re: MSword execution of dlls Ryan W. Maple (Feb 22)
- Re: MSword execution of dlls H D Moore (Feb 22)
- <Possible follow-ups>
- Re: MSword execution of dlls Ben Greenbaum (Feb 23)