Trascrivo da MacFixIt di oggi (mercoledì 13.12.06)•Originariamente Scritto da Rollei
Updated Wednesday, December 13 2006 @ 10:00 AM PST
Pulled Microsoft Office 2004, v.X security updates posted "accidentally," do not resolve Word vulnerability.
Two security updates issued by the Microsoft Mac BU yesterday -- one for Office 2004 and another for Office v.X -- were released unintentionally and subsequently pulled according to company representatives. The updates did not, as previously assumed, resolve a potentially critical security hole in Word that could allow an attacker to execute code on a user's machine by convincing them to open a specially-crafted Word document
A Microsoft spokesperson told us:
"I wanted to let you know that these weren't security updates related to this month’s release or the two Word issues we’ve written about in Security Advisory 929433 and on our weblog: those investigations are still underway and we’ll release updates for those issues once we’ve met the appropriate quality bar. The updates posted in error were pre-release binaries that had been staged internally as part of our testing for an upcoming release. Due to human error, they were accidentally published to the public websites before our full testing release process was complete."
"As soon as we discovered the error, we moved quickly to address it and remove the pre-release binaries from our public sites.
"Once our investigation into this issue is complete and we have security updates that meet our quality bar for release, we’ll release those final security updates for all products affected along with a security bulletin. We’re also taking steps to ensure a mistake like this doesn't happen again."
The company recommends that users uninstall these updates, but does not provide instructions for doing so. The only method we know of for reverting to earlier versions of Office is to completely delete the software, re-install it from original media, then apply the last legitimate update -- Office 2004 11.3.0 and Office v.X 10.1.8 respectively.
H
Connect With Us