New Follina zero-day vulnerability in Microsoft Office works even with macros disabled [TechSpot]
View Article on TechSpot
Researchers have just revealed a new zero-day vulnerability in Microsoft Office, which the infosec community has dubbed Follina. It allows attackers to execute Powershell commands via Microsoft Diagnostic Tool (MSDT) once a malicious Word document is opened.