Companies using Microsoft Office XP and Internet Explorer 5 have been warned that documents containing personal information could be sent to Microsoft along with debugging information in the event of a program crash. The feature that reports errors sends crash and debugging information back to Microsoft to help the company detect and fix bugs in its software. But the U.S. Department of Energy's Computer Incident Advisory Capability office (CIAC) has released a security bulletin reporting that the debugging information includes an image of the current contents of the PC's memory, which may include all or part of the document being viewed or edited.
|