Microsoft provides guidance on migrating DDE attacks

There are a lot of attacks which use fields Dynamic data exchange in the office. It has significantly increased recently. Microsoft still insists that the DDE is a functioning and will not treat it as a vulnerability.

 


Microsoft has put some recommendations in the administrators on how to safely disable this feature using the new registry settings for Office last week. Attacks using DDE are also likely to be bypassed by antivirus programs and scanners, preventing intrusion, given that this is most likely a function with a whitelist.

Michael Mimoso gives a very detailed account of the Microsoft DDE-ATTACK SOFTWARE manual provided by Microsoft.

 

More.