This is a detection for malicious rtf files which exploit the CVE-2014-1761 remote code execution vulnerability (http://technet.microsoft.com/en-us/security/advisory/2953095) found in Microsoft Word. A successful attempt of exploiting this vulnerability allows an attacker to execute malicious code under the credentials of the currently logged in user. The vulnerability could also be exploited through Microsoft Outlook, if Microsoft Word is used as the email viewer. Note that by default, Microsoft Word is the email reader in Microsoft Outlook 2007, Microsoft Outlook 2010, and Microsoft Outlook 2013.
Symptoms
Presence of a rtf file in an e-mail attachment
Removal instructions:
Please let Bitdefender disinfect your files.
Technical Description:
This is a detection for malicious rtf files which exploit the CVE-2014-1761 remote code execution vulnerability (http://technet.microsoft.com/en-us/security/advisory/2953095) found in Microsoft Word.
A successful attempt of exploiting this vulnerability allows an attacker to execute malicious code under the credentials of the currently logged in user.
The vulnerability could also be exploited through Microsoft Outlook, if Microsoft Word is used as the email viewer. Note that by default, Microsoft Word is the email reader in Microsoft Outlook 2007, Microsoft Outlook 2010, annd Microsoft Outlook 2013.
cephas@work 