Title: Flaw in Word Fields and Excel External Updates Could Lead to Information Disclosure
Description:Word and Excel provide a mechanism through which data from one document can be inserted to and updated in another document. A vulnerability exists because it is possible to maliciously use field codes and external updates to steal information from a user without the user being aware.
Title: Flaw in Windows XP Help and Support Center Could Enable File Deletion
Description:A security vulnerability is present in the Windows XP version of Help and Support Center, and results because a file intended only for use by the system is instead available for use by any web page.
Title: Elevation of Privilege in SQL Server Web Tasks
Description:An attacker who is able to authenticate to a SQL server could delete, insert or update all the web tasks created by other users. In addition, the attacker could run already created web tasks in the context of the creator of the web task.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.