itSynergy: Blog
URGENT ALERT: Microsoft Announces Zero Day Word Exploit
Late last night, Microsoft announced a newly discovered exploit that is in the wild that allows remote code execution by merely previewing an email in Microsoft Outlook (without clicking on it or taking any other action).
Although this has not been patched yet, Microsoft has issued a Fix It solution which will disable use of Microsoft Word to render rtf emails in Microsoft Outlook, thereby effectively avoiding this exploit.
We are actively working with our Technology Unlimited, itSynergize Remote, and itSynergize Essential customers to get this Fix It implemented after business hours this evening. We would highly recommend everyone install this patch immediately, including on home or other non-work computers.
As always please feel free to contact us with any questions or if we can be of assistance in any way.