Microsoft Word Vulnerability 
Worldstart featured this in a recent Newsletter.  You will want to read about the problem. (Mike)

Back on May 19th, a vulnerability was discovered in Microsoft Word that allowed a specially crafted Word document to arbitrarily install malware. This vulnerability is a Zero-Day Flaw, meaning there are yet to be any patches or fixes to stop it. To make matters worse, this particular vulnerability was released to the public, as well as, Microsoft, so anyone who wishes to exploit the Word vulnerability will surely try.

Thus far, the attacks have used malware to install backdoors that the mothership can use for various reasons. As a matter of fact, once the backdoor is installed on a PC, the PC would then ping the head server to inform it of the successful system breach.

In order for someone to get infected, one would need to open a specially crafted Word document designed to take advantage of the Word vulnerability. These documents can either be downloaded from a Web site or sent to you in an e-mail. Either way, the outcome is the same.

Microsoft has stated that the vulnerability will be patched on June 13, 2006 with the scheduled monthly update, so you may want to mark that down and make sure your PC updates on that day. Also, this vulnerability only applies to the 2002 and 2003 versions of Word. It will crash Word 2000, but otherwise leave it unharmed. Microsoft has come out with some work around and good practices that you may want to consider until the patch is available:
1.  Users whose accounts are configured to use restricted rights on the system could be less impacted than users who operate with administrative user rights.
2.  When running Office XP or Office 2003, the vulnerability can not be exploited automatically through e-mail. For an attack to be successful, a user must open an attachment that is sent in an e-mail message.
3.  In Office XP and Office 2003, this vulnerability can not be exploited automatically through a Web based attack scenario. An attacker would have to host a Web site that contains an Office file that is used to attempt to exploit this vulnerability. An attacker would have no way to force users to visit a malicious Web site. Instead, an attacker would have to persuade them to visit the Web site, typically by getting them to click a link that takes them to the attacker's site.
4.  Use Word Viewer 2003 to open and view files. Word Viewer 2003 does not contain the vulnerable code and is not susceptible to this attack. It can be downloaded for free here.

Users can follow these steps to disable the Outlook feature to use Word as a mail editor:
1.  Restart the machine.
2.  Open Outlook.
3.  Click Tools, click Options and then click the Mail Format tab.
4.  Clear the "Use Microsoft Word to edit e-mail messages" check box.
5.  Clear the "Use Microsoft Word to read Rich Text e-mail messages" box.
6.  Exit Outlook.
7.  Restart the machine.
8.  For more information on turning Word on or off as your e-mail editor, see the following Web site.

Use Word in Safe Mode for Home Users:

Using Word in Safe Mode helps protect the affected system from attempts to exploit this vulnerability. All versions of Word have an application recovery feature that allows running Word in Safe Mode. Safe Mode disables the functionality and prevents vulnerable code from being exploited.
1.  Word will display SAFE MODE in the title if it is operating in Safe Mode.
2.  Right click on your Desktop
3.  Select New/Shortcut.
4.  Select Browse.
5.  Locate winword.exe.
6.  Append “ /safe” (without quotes) to the end of the file location, after the quotation mark.
7.  Click Next. Name your shortcut as “Word Safe Mode.”
8.  Click Finish.

To open a Word document, follow the steps listed below:
1.  Save your Word document to a disk or onto your desktop.
2.  Start Word using your “Word Safe Mode” Shortcut.
3.  Click File, click Open, then browse to the document you wish to open.

Keep in mind that there are going to be some changes in the way Word behaves while in Safe Mode, but it’s only for a short while. Until this gets patched, here’s exactly what you can expect in Safe Mode.

Here is an excellent article written by Bob Rankin one of the editors of Tourbus.  Tourbus is an excellent Newsletter (FREE Too) and can be registered for at http://www.internettourbus.com/  

Cyberspace malefactors are enslaving millions of unsecured computers into zombie networks that are responsible for spewing out mountains of spam and attacking legitimate websites that oppose the spammers. Is your PC part of the problem? Find out now...
 
Are You a Spammer?
You might be a spammer, and never know it. Every day, ordinary computers, owned by ordinary people like you, are being used to send spam. Because so many people have failed to take just a few easy steps to secure their computers, they have become zombies, caught up in botnets.
Botnets are groups of PCs on the Internet that can have been compromised by spammers and hackers. Adware, spyware, computer viruses and other rogue programs have allowed these computers to be remotely controlled by a single entity. By using these zombie computer networks, they can send spam that's virtually untraceable, because it originates from YOUR PC, not the spammer's.

Are You a Hacker?
But that's not all... a compromised computer can also be used to attack other users and websites. A distributed denial of service (DDOS) attack uses thousands of zombie computers to flood the intended victim's computer or website with millions of incoming data packets, which can cause it to crash or become inaccessible. And again, the attacker remains anonymous because they can hide behind the zombie network. All they do is press a button which sends the "attack signal" to the zombies, which do the bidding of their master.
DDOS attacks have been used by spammers to attack individuals and the websites of anti-spam organizations. In one recent case, the Blue Frog anti-spam service was forced to shut down due to unrelenting botnet attacks.
If you have failed to secure your computer, and as a result it has been compromised, the consequences could go far beyond unwitting participation in spamming and denial of service attacks. Until you fix this problem, your privacy, the integrity of your files, and the safety of your personal information are all figments of your imagination. Any program, any file, any email on your computer is accessible to the person who controls it. Once the zombie master has tapped into your PC, he or she can install new programs, browse your documents and emails, delete files at random, or use your identity to commit crimes. And of course, you could be oblivious to all of this.

Take Back Your Computer - Take Back the Net
But that doesn't have to be the case. By securing your computer, you take back your personal privacy, and you help to shut down spammers. The good news is that it doesn't take a lot of time, money or computer skills. To make sure your computer is free of rogue software and secured for the future, the first thing you need to do is make sure your PC has the latest Microsoft security fixes. If configure your system to run Windows Update in automatic mode, you'll always be up to date, without another keystroke. Open Internet Explorer, click on Tools, then Windows Update. Follow the instructions to download the required fixes, then choose the Automatic mode.
Next, you absolutely need anti-virus software, anti-spyware software, and a firewall. The two articles below will show you my recommendations for the best anti-virus and anti-spyware software, and the facts on both hardware & software firewalls. This is the solution I've used myself for several years and I know it works. Best of all, everything you need is free!
    * Best Anti-Virus and Anti-Spyware Software
    * Do I Need a Firewall? 

More Internet Security Resources
Do you use a wireless connection at home or on the road? If so, you should read these next two articles to make sure your computer is not vulnerable to wireless networking exploits.
    * Wireless Security
    * Is Public Wi-Fi Safe? 

The most serious of the bugs could be exploited by miscreants to hijack vulnerable systems, Mozilla said Thursday. The company, which oversees Firefox development, has published security advisories for each of the flaws repaired by the Firefox update.
Got views on Vista?

"Firefox 1.5.0.4 is a security update that is part of our ongoing program to provide a safe Internet experience for our customers," Mozilla said on its Web site. "We recommend that all users upgrade to this latest version."

Security monitoring company Secunia deems the Firefox issues "highly critical," one notch below its most severe rating.

The latest Firefox update comes a month after the previous security fix release for the popular open-source browser. Users of Firefox 1.5 or newer, released last November, will receive the patches automatically. 

Hey Fred, Great news letter.  The Plus edition is worth every penny.
I am writing regarding the discussion on booting a computer with thumb/USB flash drives for use on public computers.  I happened upon an article on Kim Komando's site at http://komando.com/shareware_show.asp?showID=9675 that has a list of 6 free programs you can use from the thumb drive to help in keeping you safe while using public computers.
On that same note, here is another site that has more info on thumb drives and programs for them, etc.
http://www.lifehacker.com/software/thumb-drive/ It is a site called Life Hacker.

Another site for portable apps for thumb drives is http://portableapps.com/ There are a bunch of sites.  I searched using google:
http://tinyurl.com/s2uak Just thought you and your readers might be interested.
Thanks again for a great news letter.  Plus Subscriber, Bill Tone 

Nice, Bill, thanks.  We covered a couple of those before; in case you missed them, see "More OS-On-A-Stick Options" http://langa.com/newsletters/2006/2006-02-09.htm#3  and a step-by-step article on " XP On Your USB Thumb/Flash Drive "  http://www.informationweek.com/showArticle.jhtml?articleID=177102101 
 

Microsoft Word Vulnerability 
Worldstart featured this in a recent Newsletter.  You will want to read about the problem. (Mike)

Back on May 19th, a vulnerability was discovered in Microsoft Word that allowed a specially crafted Word document to arbitrarily install malware. This vulnerability is a Zero-Day Flaw, meaning there are yet to be any patches or fixes to stop it. To make matters worse, this particular vulnerability was released to the public, as well as, Microsoft, so anyone who whishes to exploit the Word vulnerability will surely try.

Thus far, the attacks have used malware to install backdoors that the mothership can use for various reasons. As a matter of fact, once the backdoor is installed on a PC, the PC would then ping the head server to inform it of the successful system breach.

In order for someone to get infected, one would need to open a specially crafted Word document designed to take advantage of the Word vulnerability. These documents can either be downloaded from a Web site or sent to you in an e-mail. Either way, the outcome is the same.

Microsoft has stated that the vulnerability will be patched on June 13, 2006 with the scheduled monthly update, so you may want to mark that down and make sure your PC updates on that day. Also, this vulnerability only applies to the 2002 and 2003 versions of Word. It will crash Word 2000, but otherwise leave it unharmed. Microsoft has come out with some work around and good practices that you may want to consider until the patch is available:
1.  Users whose accounts are configured to use restricted rights on the system could be less impacted than users who operate with administrative user rights.
2.  When running Office XP or Office 2003, the vulnerability can not be exploited automatically through e-mail. For an attack to be successful, a user must open an attachment that is sent in an e-mail message.
3.  In Office XP and Office 2003, this vulnerability can not be exploited automatically through a Web based attack scenario. An attacker would have to host a Web site that contains an Office file that is used to attempt to exploit this vulnerability. An attacker would have no way to force users to visit a malicious Web site. Instead, an attacker would have to persuade them to visit the Web site, typically by getting them to click a link that takes them to the attacker's site.
4.  Use Word Viewer 2003 to open and view files. Word Viewer 2003 does not contain the vulnerable code and is not susceptible to this attack. It can be downloaded for free here.

Users can follow these steps to disable the Outlook feature to use Word as a mail editor:
1.  Restart the machine.
2.  Open Outlook.
3.  Click Tools, click Options and then click the Mail Format tab.
4.  Clear the "Use Microsoft Word to edit e-mail messages" check box.
5.  Clear the "Use Microsoft Word to read Rich Text e-mail messages" box.
6.  Exit Outlook.
7.  Restart the machine.
8.  For more information on turning Word on or off as your e-mail editor, see the following Web site.

Use Word in Safe Mode for Home Users:

Using Word in Safe Mode helps protect the affected system from attempts to exploit this vulnerability. All versions of Word have an application recovery feature that allows running Word in Safe Mode. Safe Mode disables the functionality and prevents vulnerable code from being exploited.
1.  Word will display SAFE MODE in the title if it is operating in Safe Mode.
2.  Right click on your Desktop
3.  Select New/Shortcut.
4.  Select Browse.
5.  Locate winword.exe.
6.  Append “ /safe” (without quotes) to the end of the file location, after the quotation mark.
7.  Click Next. Name your shortcut as “Word Safe Mode.”
8.  Click Finish.

To open a Word document, follow the steps listed below:
1.  Save your Word document to a disk or onto your desktop.
2.  Start Word using your “Word Safe Mode” Shortcut.
3.  Click File, click Open, then browse to the document you wish to open.

Keep in mind that there are going to be some changes in the way Word behaves while in Safe Mode, but it’s only for a short while. Until this gets patched, here’s exactly what you can expect in Safe Mode.

Trend Micro, more commonly referred to as Housecall, offers free virus scans and in most cases can fix damage down by a virus or worm that your computer may have contacted.  The program works well.  The first time one uses the free program it is necessary to download a small program. Trend Micro walks you through the process.   Then the virus scans are quite simple for each return.  Go to http://housecall.antivirus.com/  then choose the link   "Scan without registering".  Follow the directions.

You should disable any anti virus program that you have running.  If you do not have a virus program I recommend that you use one of the programs offered above first and then download and install one of the free programs listed below or install any anti virus program you have purchased.

AVG Free
AVG Free Edition is the well-known anti-virus protection tool. AVG Free is available free-of-charge to home users for the life of the product! Rapid virus database updates are available for the lifetime of the product, thereby providing the high-level of detection capability that millions of users around the world trust to protect their computers. AVG Free is easy-to-use and will not slow your system down (low system resource requirements).
http://free.grisoft.com/freeweb.php/doc/2/lng/us/tpl/v5

Avast
Avast has been "anti virusing" for quite awhile.  The following info comes from their download page:   Avast! Home is now free of charge for HOME users for NON-COMMERCIAL use. You can find more info here.
http://www.avast.com/eng/down_home.html
Note: This product is free for home non-commercial use after registration!
HINTS:   Click on the English Version Link and download the installation file.  Then click on the installation file and follow the directions.  You will need to return to the download page and click on the link to get the registration key.   It will be sent to you in an email after you provide some registration information.  This will give you 14 months of coverage including any updates which can be set to auto download.  You can reregister for additional free coverage at the end of the 14 months.
You will want to browse around and choose from the many options available for operation.  This process will take some time and digging.

Another good free program is:
http://www.free-av.com/
This one installs a bit easier than Avast.

Spybot - Search & Destroy 1.4 - product description
Application to scan for spyware, adware, hijackers and other malicious software.
Choose one of the sites to download from.
http://www.safer-networking.org/en/mirrors/index.html

Ad-Aware Personal provides advanced protection from known data-mining, aggressive advertising, Trojans, dialers, malware, browser hijackers, and tracking components. This software is downloadable free of charge.
http://www.lavasoftusa.com/software/adaware/

Here are a few sites of many that can help you determine if an email is a hoax or real.

http://www.snopes.com/
http://vil.nai.com/VIL/hoaxes.asp
http://kumite.com/myths/
http://www.symantec.com/avcenter/hoax.html
http://www.scambusters.org/VirusHoaxes.html
http://www.sophos.com/virusinfo/hoaxes/
http://www.truthorfiction.com/
http://www.quatloos.com/