BetaONE will rise again!


 
Prev Previous Post   Next Post Next
  #1  
Old 18th Aug 05, 01:30 PM
NewsBot's Avatar
NewsBot NewsBot is offline
Senior Member
 
Join Date: Oct 2004
Posts: 30,940
NewsBot will become famous soon enough
Microsoft IE Remote Code Execution Exploit (0day) - Critical
FrSIRT have identified a critical vulnerability with Internet Explorer 6 for Windows XP SP1 and SP2.

The problem could be exploited by remote attackers to execute arbitrary commands. The issue is due to a memory corruption error when instantiating the "Msdds.dll" (Microsoft Design Tools Diagram Surface) object as an ActiveX control, which could be exploited by an attacker to take complete control of an affected system via a specially crafted Web page.

Unfortunately for users of Internet Explorer 6 there is 0day Exploit Code readily available for would be hackers to create web pages. We have contacted Microsoft for a response but at the time of writing we have not received one. We will update the story accordingly.

View: FrSIRT AdvisoryRead full story...


News source: Full Story
Reply With Quote
 


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is On
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Microsoft Security Updates: August 2005 NewsBot NeoWin News 0 9th Aug 05 09:00 PM
Microsoft plans to give some pirates a break Alpine BetaONE News 0 5th May 05 04:51 AM
Neowin Talks Security with Microsoft NewsBot NeoWin News 0 7th Feb 05 02:00 AM
Microsoft Preps Patches for 'Critical' Flaws NewsBot NeoWin News 0 7th Jan 05 01:30 PM
Speed up system. greasemonkey Hardware Support 6 6th Nov 01 08:32 PM


All times are GMT +1. The time now is 08:50 AM.


Design by Vjacheslav Trushkin for phpBBStyles.com.
Powered by vBulletin® Version 3.6.5
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.