] [TechWeb June 10, according to foreign media reports, Microsoft on Friday night warned that Office vulnerabilities hackers use to launch spam attacks, these spam carrying malicious RTF document. Users simply open the attached document, it may be infected with malicious software. These spam messages are sent using a variety of European languages, mainly for European users.
Microsoft Security Intelligence (Microsoft Security Intelligence) in a series of tweets, Microsoft warned that they detected an active spam attacks include RTF attachments, these spam use Microsoft Office Vulnerabilities and Wordpad CVE-2017-11882 .
CVE-2017-11882 vulnerability allows hackers to create RTF and Word documents, once the user opens automatically execute the command. However, this vulnerability has been patched in 2017. But Microsoft said they still see the vulnerability to be attacked to use, and attacks have increased in the past few weeks.
Microsoft said that when the RTF document is opened, it will download and run different types of scripts (VBScript, PowerShell, PHP, etc.), in order to download the payload. (Little Fox)