Hackers are exploiting a new, unpatched vulnerability in Microsoft Word that could allow them to take control of a victim’s computer, Symantec has warned.The zero-day vulnerability is the fourth in Microsoft’s widely used Word 2000 software that has not yet been patched, the security company said in its Security Response Weblog.A zero-day vulnerability refers to a security hole for which exploits are already available when it was discovered. This latest one affects most versions of Windows running Word, Symantec’s advisory said.Danish security vendor Secunia also reported the vulnerability and rated it as “extremely critical,” its highest-level warning. The attack comes via an infected Word document, a method increasingly used by hackers for targeted attacks. If the document is opened, it installs a Trojan horse program, called Trojan.Mdropper.W, onto the computer, Lau wrote. The Trojan also puts other files on a computer that enable a hacker to control it. Microsoft could not be immediately reached for comment. The company released three sets of critical patches on Jan. 9, including ones for Outlook, PowerPoint and Windows, but not for Word. Users can avoid trouble by not opening unexpected Word documents attached to e-mail. Hackers often spam out thousands of messages with harmful attachments, such as Trojan horse programs, hoping unsuspecting victims will open them.Trojans often look harmless and can quietly install themselves on a computer with no visible signs. The use of Word to mount an attack can be particularly effective since the file format is so widely used.-Jeremy Kirk, IDG News Service (London Bureau)Check out our CIO News Alerts and Tech Informer pages for more updated news coverage. Related content feature 8 change management questions every IT leader must answer Designed to speed adoption and achieve business outcomes, change management hasn’t historically been a strength of IT orgs. It’s time to flip that script by asking hard questions to hone change strategies. By Stephanie Overby Nov 30, 2023 10 mins Change Management Change Management IT Operations feature CIO Darlene Taylor’s formula for success: Listen, drive, care This Motor City CIO says building and maintaining credibility starts with an empathy-driven approach, which has the potential to render you highly appealing to top talent. By Michael Bertha Nov 30, 2023 6 mins Automotive Industry IT Leadership brandpost Sponsored by Huawei 400G: Building bandwidth for the next lap By Jane Chan Nov 30, 2023 5 mins Networking feature 4 remedies to avoid cloud app migration headaches The compelling benefits of using proprietary cloud-native services come at a price: vendor lock-in. Here are ways CIOs can effectively plan without getting stuck. By Robert Mitchell Nov 29, 2023 9 mins CIO Managed Service Providers Managed IT Services Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe