researchers report vulnerability in microsoft word online video feature
How Can the Online Video Feature Be Abused?
To prove the extent of the vulnerability, Cymulate researchers created a proof-of-concept attack.
Screenshot of .xml File Code
Who is Effected by This Vulnerability?
Researchers decided to go public with their findings three months after Microsoft refused to acknowledge the reported issue as a security vulnerability. Apparently, Microsoft has no plans to fix the issue and says its software is “properly interpreting HTML as designed.”