RTF Attacks In The Wild

The Microsoft Malware Protection Center Threat Research & Response blog has communicated a warning about active attacks on Windows machines over the holidays.  The exploit uses an RTF (rich text format) file to create a stack overflow in Word running on Windows.  The vulnerability was patched in Microsoft Word in November’s updates, but Word 2004 for Macintosh is still vulnerable.  If you have not downloaded the November patches, you are urged to do so ASAP.