Malicious Code Exploit Discovered in Microsoft Office -- Redmond Channel Partner

Malicious Code Exploit Discovered in Microsoft Office

By Scott Bekker
October 29, 1999

Finjan Software (www.finjan.com) announced that they have discovered a new exploit involving Microsoft Windows scrap files that could be used to deliver Trojan attacks. Microsoft Office applications can be used to create "scrap" files (.SHS extension) to hide executable programs.

Because the file extension on .SHS files is always hidden, a file can be falsely named with a harmless-seeming file extension (.TXT, .JPG, .GIF), which a user will be more likely to open. Once opened, a scrap file will transmit the Trojan executable program to the user's machine.

Microsoft Windows scrap files are created when a file is copied into an open Microsoft Office document and then copied and pasted onto the Windows desktop. The new scrap file is created with the hidden file extension .SHS, but can easily be renamed by a malicious user. When distributed via e-mail messages or instant message file transfer or other Web-based media, a scrap file's extension becomes visible, but once saved to the hard drive, the .SHS extension will disappear again.

About the Author

Scott Bekker is editor in chief of Redmond Channel Partner magazine.

Featured

2019 Microsoft Conference Calendar: For Partners, IT Pros and Developers

Here's your guide to all the IT training sessions, partner meet-ups and annual Microsoft conferences you won't want to miss this year.
Traditional Database Management Losing Ground to Cloud

The database management system (DBMS) market's growth is increasingly being driven by cloud services, not by more traditional on-premises systems.
Azure Backup for SQL Server 2008 Released to Preview

Microsoft's Azure Backup service can now support SQL Server 2008 and SQL Server 2008 R2.
Microsoft Brings Chromium-Based Edge Browser to Older Windows OSes

Microsoft has released Edge previews for Windows 7 and Windows 8/8.1, which previously didn't support Microsoft browsers beyond Internet Explorer 11.

Malicious Code Exploit Discovered in Microsoft Office

Featured

2019 Microsoft Conference Calendar: For Partners, IT Pros and Developers

Traditional Database Management Losing Ground to Cloud

Azure Backup for SQL Server 2008 Released to Preview

Microsoft Brings Chromium-Based Edge Browser to Older Windows OSes

Microsoft Finally Releases Hyper-V Server 2019

Microsoft Ends Development on Windows To Go

The 2019 Microsoft Product Roadmap

What the Partner Awards Reveal About Microsoft's Priorities

2019 Microsoft Conference Calendar: For Partners, IT Pros and Developers

Microsoft Finally Releases Hyper-V Server 2019

Microsoft Ends Development on Windows To Go

The 2019 Microsoft Product Roadmap

What the Partner Awards Reveal About Microsoft's Priorities

2019 Microsoft Conference Calendar: For Partners, IT Pros and Developers

Partner Guides

Partner's Guide to Office 365 Security Costs

Partner's Guide to UCaaS

Partner's Guide to Starter Workloads in Azure

Partner's Guide to Microsoft's Fiscal Year 2019

Partner's Guide to Making the Most of Dynamics 365 IUR

FREE WEBCASTS FROM OUR SPONSORS

Live Webinar: Expert Advice from T-Systems to Make Your Buildings Smarter

What’s Changed Since the Last Time You Bought Backup?

5 Big Opportunities for MSPs in 2019

State of the MSP Market

FREE WHITE PAPERS FROM OUR SPONSORS

Digital Dialogue: Best Practices for Securing Your Office

The Ultimate Guide to Reselling Microsoft 365 Business

Evolving Strategies for Handling Today’s Costly Threats

The State of DDoS Weapons in Q1 2019