Although this month’s Patch Tuesday was a light one and didn’t include any patches for any version of Windows, those organizations that use Microsoft Office still need to be sure the updates were installed, as a critical update fixes five security issues that affect Office 2007 and 2010, whereby a preview pane vector in Outlook can be exploited through Microsoft Word by a malicious Rich Text Format (RTF) file. Cautioning users not to open suspicious email messages won’t help in this case, as it only has to be displayed in the preview pane for the machine to become infected.
A second update deals with a couple of vulnerabilities in PowerPoint that can allow remote code execution. Find out more details about these here:
http://news.cnet.com/8301-27080_3-20022257-245.html?part=rss&subj=news&tag=2547-1_3-0-20