Microsoft Office 2010 is a Security Vulnerability

Dr. Roy Schestowitz

2010-07-07 12:02:49 UTC
Modified: 2010-07-07 12:02:49 UTC

Summary: Two "critical" security vulnerabilities are found in Office 2010, but there is no disclosure

THE first known Office 2010 flaw was mentioned here a few days ago and Microsoft's habit of secretly patching vulnerabilities (fixing them without telling anyone) was covered here several weeks ago. Microsoft admitted doing this, with this important admission finally arriving in May. Now, watch this new report:

Following on from full disclosure, Microsoft now has a new disclosure variant to contend with – no disclosure. French security services provider VUPEN claims to have discovered two critical security vulnerabilities in the recently released Office 2010 – but has passed information on the vulnerabilities and advice on mitigation to its own customers only. For now, the company does not intend to fill Microsoft in on the details, as they consider the quid pro quo – a mention in the credits in the security bulletin – inadequate.

Why would anyone pay hundreds of dollars for a piece of software which Amazon rated just 2/5 for lack of novelty and other reasons? There isn't even adherence to international standards [1, 2, 3, 4, 5, 6, 7]. It's just fake hype [1, 2] that Microsoft has allocated nearly a tenth of a billion to (in marketing alone). OpenOffice.org 3.3 is already in the works and it makes code, not marketing. Amazon has it rated 5/5 (compared to 2/5 for Microsoft Office 2010). ⬆

Recent Techrights' Posts

The Myth of an Aging (or Dying) GNU/Linux Leadership: Self-fulfilling prophecies as a tactic?
There's Nothing "Funny" About Attacking Free Speech and Software Freedom: persistent focus on the principal issues is very important
GNU/Linux Adoption in Africa, a Passageway Towards Freedom From Neo-Colonialism: Digi(tal)-Colonialism and/or Techolonialism are a thing. Can Africa flee the trap?
Shooting the Messenger Using Bribes and Secrecy Bonds: We seem to live in a world where accountability for the rich and well-connected barely exists anymore
Links 06/12/2023: Many More December Layoffs: Links for the day
IRC Proceedings: Tuesday, December 05, 2023: IRC logs for Tuesday, December 05, 2023
PipeWire 1.0: Linux audio comes of age: Once upon a time, serious audio users like musicians and audio engineers had real trouble with Linux
This is How 'Linux' Foundation Presents Linux to the World: Right now it even picks Windows over Linux in some cases
Links 05/12/2023: Microsoft's Chatbot as Health Hazard: Links for the day
Professor Eben Moglen Explained How Software Patent Threats Had Changed Around 2014 (Alice Case) and What Would Happen Till 2025: clip aged reasonably well
CNN Contributes to Demolition of the Open Web: Reprinted with permission from Ryan Farmer
Eben Moglen on Encryption and Anonymity: The alternate net we need, and how we can build it ourselves
Yet More Microsofters Inside the Board of Mozilla (Which Has Just Outsourced Firefox Development to Microsoft's Proprietary Prison): Do you want a browser controlled (and spied on) by such a company?
IRC Proceedings: Monday, December 04, 2023: IRC logs for Monday, December 04, 2023
GNU/Linux Now Exceeds 3.6% Market Share on Desktops/Laptops, According to statCounter: things have changed for Windows in China
Over at Tux Machines...: GNU/Linux news
Links 05/12/2023: Debt Brake in Germany and Layoffs at Condé Nast (Reddit, Wired, Ars Technica and More): Links for the day
[Meme] Social Control Media Giants Shaping Debates on BSDs and GNU/Linux: listening to random people in Social Control Media
Reddit (Condé Nast), Which Has Another Round of Layoffs This Month, Incited People Against GNU/Linux Users (Divide and Rule, It's 2003 All Over Again!): Does somebody (perhaps a third party) fan the flames?
Who Will Hold the Open Source Initiative (OSI) Accountable for Taking Bribes From Microsoft and Selling Out to Enable/Endorse Massive Copyright Infringement?: it does Microsoft advocacy
Using Gemini to Moan About Linux and Spread .NET: Toxic, acidic post in Gemini
Web Monopolist, Google, 'Pulls a Microsoft' by Hijacking/Overriding the Name of Competitor and Alternative to the Web: Gulag 'hijacking' 'Gemini'
Links 04/12/2023: Mass Layoffs at Spotify (Debt, Losses, Bubble) Once Again: Links for the day
ChatGPT Hype/Vapourware (and 'Bing') Has Failed, Google Maintains Dominance in Search: a growing mountain of debt and crises
[Meme] Every Real Paralegal Knows This: how copyright law works
Forging IRC Logs and Impersonating Professors: the Lengths to Which Anti-Free Software Militants Would Go: Impersonating people in IRC, too
IRC Proceedings: Sunday, December 03, 2023: IRC logs for Sunday, December 03, 2023
GNU/Linux Popularity Surging, So Why Did MakeUseOf Quit Covering It About 10 Days Ago?: It's particularly sad because some of the best articles about GNU/Linux came from that site, both technical articles and advocacy-centric pieces
Links 04/12/2023: COVID-19 Data Misused Again, Anti-Consumerism Activism: Links for the day