By Susan Bradley
Microsoft’s most critical patch this month is one I recommend holding back on.
ActiveX control vulnerability threatens RTF files
In its April 10 Security Research & Defense blog, Microsoft describes how a flawed ActiveX control in all 32-bit versions of Office allows attacks via malicious Office documents. The first examples of this exploit use RTF-format files.
The blog goes on to say that there have been limited attacks, so far.