XML twiddling in .docx files can lead to lock and loading dodgy JavaScript, we’re told
A Microsoft Word security hole involving embedded videos can be potentially exploited to smuggle malicious code within documents, which is run when the files are opened, it is claimed. Seeing as there is no official patch for the alleged vulnerability, a workaround is to block files with embedded videos.…
Source:: Register