3
1
Sometimes I have to download some word or excel documents from incredible sites. I need not only to read but also to edit them. I heard that Microsoft Office suite is a very popular attack vector. Although I patch my windows and office regularly I guess there must be many 0day vulnerabilities in them. In order to mitigate the risk, after downloading a word document, I would upload it to the Google Docs, make some small changes and download it with a different format (for example, if the original file is a *.doc file then I would download it as a *.docx file and vise versa). I guess such conversion may "sanitize" (or at least break) the malicious code (if any) in the suspicious file but I am not sure whether it does work.
So, does anyone know whether it works?
Mamsds
Posted 2016-10-31T07:08:51.050
Reputation: 137
1
This is a good question. If you don't receive a satisfactory response here, move it over to security.stackexchange.com. Not to imply that it's off-topic here, but just that those people over there are very knowledgeable about this sort of thing.
– n8te – 2016-10-31T07:58:40.750Thanks @n8te! I just wondered whether it belongs to superuser but I did not know the security.stackexchange.com before. – Mamsds – 2016-10-31T08:38:53.593
No problem. I see you posted it over there now. I would go ahead and delete this one here now before someone over on that site brings up the fact that you're not supposed to cross post the same question at two different SE sites. Besides, I'm sure you'll get a much more thorough response to this type of question over there anyway. – n8te – 2016-10-31T08:46:19.193