Page 1 of 1

Microsoft Word / Office affected by RTF parsing exploit

Posted: 2014-03-25 13:59:52
by martin
Microsoft has released information regarding a vulnerability in Word and Office. The attack works by exploiting a bug in their RTF parsing code to take control of the application. The problem is not with the RTF file format itself, just the way Microsoft handles it.

We just want to make clear that Nisus Writer is not affected; our RTF parsing code does not have the bug that makes this attack viable. And even if it did, Nisus Writer would still not be affected by this issue because the exploit requires scripting components that are specific to Microsoft Office.