A number of well-known Windows programs broke the vulnerability

According to foreign media reports, the Belgian security website Corelan.be today announced a list of applications affected by the latest Windows DLL vulnerability, including several Microsoft programs - Word 2007, Office PowerPoint 2010 and Office Visio 2003. French vulnerability research company VUPEN also announced some bug-affected programs, such as Mozilla Firefox and Adobe Photoshop.

Symantec Security Response research and development manager Mark - Fossey (Marc Fossi), said: "So far, we have not found any attacks using this attack in a popular way, but I receive some limited exploits report. However, some of the programs affected by the vulnerability list has been published. "

Microsoft Monday announced that security vulnerabilities variety of Windows applications. This is a DLL preloading attack. Although this attack mechanism is not the first to appear (and only for Windows systems), Microsoft believes that a new type of remote attack will cause more users to be attacked.

early as August 16, Acros Security security researcher then said they found security vulnerabilities more than 200 programs. HD Moore, chief security officer of network vulnerability management company Rapid7, also said that he also found this vulnerability in some applications. Moore also recently released a self-developed detection tool to help users identify vulnerable applications.

Microsoft said in its security blog today: "We are currently investigating the impact of the vulnerability of Microsoft products in addition, we also guide developers on how to avoid vulnerabilities.."

Moore recommendations Every application must be fixed by itself. If the user is concerned about the vulnerability, close the TCP 139 and 445 ports and disable the WebDAV client.