It has come to this: vendors posting
YouTube videos of their researchers exploiting new zero-day
vulnerabilities . Symantec researchers on Wednesday posted a
clip on the popular video-sharing site of them using the newly
discovered flaw in Microsoft Word to drop an executable on a
vulnerable machine.
The video shows clearly that after the exploit occurs and the
user tries to open Word, the screen flickers quickly as the
malicious code terminates the application and then immediately
restarts it. This is the only real indication of the exploit, the
Symantec researchers say. It's an interesting clip and a novel way
to get the word out about a new vulnerability.
