lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <OF60A8C9AA.4F52F3E5-ON00256E0F.003B08BA-C1256E0F.003B9AEC@localhost>
Date: Fri, 2 Jan 2004 10:51:03 +0000
From: Thorsten Delbrouck-Konetzko <Thorsten.Delbrouck@...rdeonic.com>
To: bugtraq@...urityfocus.com
Cc: "Microsoft Security Response Center" <secure@...rosoft.com>
Subject: Microsoft Word Protection Bypass

Hi all,

Microsoft Word provides an option to protect "forms" by password. This is 
used to ensure that unauthorized users cannot manipulate the contents of 
documents except within specially designed "form" areas. This feature is 
also often used to protect documents which do not even have form areas 
(quotations/offers etc.).

This form protection can easily be removed without any additional tools 
(apart from a hex-editor).

Please find the full advisory attached.

best regards,
/tdk

-- 
 Thorsten Delbrouck
 Chief Information Officer

 Guardeonic Solutions AG
 Rosenheimer Str. 116
 D-81669 Munich
---------------------------------



View attachment "adv_microsoft_word_protection.txt" of type "text/plain" (4327 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ