New FAQ document about the recently discovered 0-day vulnerability in Microsoft Word is available. This vulnerability has been reported especially in Office 2000 on Windows 2000 machines. Possible other Office versions are affected as well. This vulnerability is being exploited by Trojan from Mdropper family, but the newest information states dependencies to Mofei worm (reported in the wild in2003 already). Names as W32/MoFei.worm, W32.Femot.Worm etc. has been assigned. The document entitled as Microsoft Word 0-day Vulnerability FAQ - September 2006, CVE-2006-xxxx is located at my SecuriTeam Blogs section, http://blogs.securiteam.com/?p=586 The CVE name will be added to the document when it is available. - Juha-Matti