Welcome to the Virus Encyclopedia of Panda Security.
|worm, Trojan or backdoor. It is a group of critical vulnerabilities in Active Template Library (ATL) Controls for Office, which allows arbitrary code to be remotely executed and information to be disclosed.|
The affected components are:
- Outlook 2007 on Office 2007.
- Outlook 2003 on Office 2003.
- Outlook 2002 on Office XP.
- Visio Viewer 2007/2003/2002.
If exploited successfully, MS09-060 allows hackers to gain remote control of the affected computer with the same privileges as the logged on user. It also could allow an attacking user to access any data available to the logged on user.
MS09-060 is usually exploited by creating a specially crafted web page and enticing users to access it. The link to the website can be distributed using several methods, such as email, instant messaging programs, etc.
If you have any of the vulnerable Office components, it is recommended to download and apply the security patch for this vulnerability. Click here to access the web page for downloading the patch.