2020-05-21 00:00:00

SecurityCISA|document|exploit|hacking|list|Microsoft|office|ranking|top 10|vulnerability

Top 10 most exploited software security holes hide in office documents

People who work with open source software tend to be concerned about vulnerabilities in Wordpress, Java and other popular products, but criminals and spies who want direct access inside a business or government organization prefer exploiting security holes in office documents. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has published a top 10 list of the most exploited security problems in software from 2016 until 2019.

If someone wants to access computers and data inside an organization, and decided to hack his or her way in via office documents, what is the most popular product that almost everyone is using? Microsoft Office, and file formats that it uses.

In that sense it is not a surprise that security problems in Microsoft products dominate the most exploited top 10 list, but it is a surprise that patches for these widely known security holes have been available for a long time. Organizations that have been hacked just haven't bothered to update their software products.

Top 10 security problems in software products by CISA

  1. A remote code execution vulnerability in Microsoft Office products is used to bypass security settings. The problem has been known since 2017. (CVE-2017-11882)
  2. Another remote code execution hole in Microsoft Office allows an attacker to run his own software (delivered in a document) on a user’s computer. It is used, for instance, by banking and spyware trojans such as Dridex. (CVE-2017-0199)
  3. A remote code execution problem in Apache Struts, exploited in the Equifax hack of 2017. Apache Struts is a framework for Java applications.(CVE-2017-5638)
  4. Eight years old problem in Windows ActiveX component hasn't been updated on all computers, but can still be exploited, for instance, by the Dridex banking trojan. (CVE-2012-0158)
  5. Microsoft SharePoint, an intranet service platform, has a remote code execution vulnerability that was exploited in an attack to the United Nations infrastructure in Geneva in 2019. (CVE-2019-0604)
  6. A remote code execution hole in Microsoft SMB (file and printer sharing service within local office network) is so popular attack vector that it has been incorporated into the EternalSynergy and EternalBlue software kits available on the internet. (CVE-2017-0143)
  7. Fortunately, the use of Adobe Flash Player has been declining for a few years already, but since 2018 attackers have been and still are targeting a vulnerability in the software. (CVE-2018-4878)
  8. Microsoft .NET Framework has a remote code execution vulnerability that has allowed, for instance, FinFisher spyware to get in to office networks. (CVE-2017-8759)
  9. All organizations that use RTF document format beware: a security problem in Microsoft Office allows a hacker to run his own program that is distributed inside a RTF document. (CVE-2015-1641)
  10. Open source content management and publishing system Drupal has a core vulnerability that has been used to run cryptomining code Kitty. (CVE-2018-7600)

CISA also warns that in 2020, two new attack techniques are growing at an alarming rate:

  • VPN servers that haven't been updated are a new target. Particularly, Citrix VPN appliances and Pulse Secure VPN servers are being attacked.
  • Microsoft Office 365 cloud services are a new frequently attacked target.

Via The Register.

News

2025-06-11 16:24:00

Let's go.#streetphotographyflic.kr/p/2r3EuJNhttps://flic.kr/p/2r3EuJN


News

2025-06-04 18:08:00

A #photographer has been using sunglasses with a camera and loudspeakers for 8 months: "I quite enjoy them, and they’ve quickly become my daily wear as far as sunglasses are concerned."https://fstoppers.com/artificial-intelligence/ray-ban-meta-glasses-photographers-perspective-701899


News

2025-06-02 14:42:00

Today, digital nomads recognize the benefits but also risks of their lifestyle. An extensive study among traveling workers reveals the highs and lows of the nomad life. #remotework #digitalnomadhttps://klaava.com/digital-nomads-feel-powered-by-their-lifestyle-but-recognise-inevitable-downsides-as-well/


Aland archipelago

2025-05-30 16:59:41

Aland archipelago


Highway across a swamp.

2025-05-30 11:14:51

arihak

Highway across a swamp.


News

2025-05-26 16:29:00

Flower market, but she is selling fruit trees.#streetphotographyhttps://unsplash.com/photos/TfQ6uYmI9QQ


News

2025-05-22 14:19:00

In Spain, the Balearic government asked influencers to help ease pressure on overcrowded hotspots by promoting less-visited areas. Instead, influencers have unintentionally drawn large crowds of tourists to remote, ecologically sensitive locations. #photography #selfiehttps://petapixel.com/2025/05/21/spanish-islands-ban-influencers-after-4000-tourists-flock-to-tiny-beach-for-selfies/


News

2025-05-18 18:23:00

Most travelers already knew that south Europe is the warm and sunny zone of #Europe, and this ranking confirms it. Spain and Italy have most cities in the top 30, followed by France and Portugal. #travelhttps://klaava.com/sunniest-cities-in-europe/


Popular sight in Sevilla

2025-05-16 17:51:34

Popular sight in Sevilla


News

2025-05-14 16:03:00

Bordeaux is ready for hot summer days.#streetphotographyhttps://pixelfed.social/p/arihak/827854641319295061


Cooling zone.

2025-05-13 12:38:47

arihak

Cooling zone.


Hochosterwitz castle

2025-05-10 15:23:05

Hochosterwitz castle


News

2025-05-07 14:39:00

A meeting in winter sun.#streetphotography #travelphotographyflic.kr/p/2qey2NHhttps://flic.kr/p/2qey2NH


News

2025-04-30 17:01:00

Shady character.#streetphotography #travelphotography #StreetPhotography


Not in space, but firmly on the ground in Valencia.

2025-04-25 17:47:30

arihak

Not in space, but firmly on the ground in Valencia.


News

2025-04-24 15:17:00

According to a survey, football (a sport where you are supposed to kick the ball instead touching the ball with a hand) is the most popular sports that fans want to follow live on site even if it means traveling overseas. #travelhttps://klaava.com/sports-events-are-trending-among-travelers/


News

2025-04-23 14:19:00

An unexpected recognition for analog #photography : UNESCO Cultural Heritage designation suggests a renewed appreciation for the craftsmanship and cultural significance of analog methods.https://www.diyphotography.net/analog-photography-recognized-as-intangible-cultural-heritage-by-unesco/


News

2025-04-17 13:18:00

New restriction on Flickr #photo sharing: Free #Flickr accounts will be restricted from downloading original and large-size images. While users will still be able to upload photos of all sizes, free account holders will only be able to download medium and small photos.https://petapixel.com/2025/04/16/flickr-restricting-download-sizes-for-free-accounts/


News

2025-04-16 10:54:00

Morning commute.#streetphotography#travelphotography


News

2025-04-12 09:17:00

The region in #Europe where you will get more #travel days for your euro (or whatever the local currency happens to be). The difference in the average cost is vast between the cheapest and the most expensive European countries.https://klaava.com/here-are-the-cheapest-countries-to-travel-in-europe/