BetaONE will rise again!


Reply
  #1  
Old 22nd Feb 07, 02:26 PM
Alpine's Avatar
Alpine Alpine is offline
Retired Crew
 
Join Date: Feb 2002
Location: Run Forest, RUN!!
Posts: 3,601
Alpine is on a distinguished road
Send a message via ICQ to Alpine Send a message via AIM to Alpine
Hackers exploit old Internet Exploder bug
VML hole returns but this time it is personal

A BUG in IE, which first appeared last year, is being exploited again.


The flaw uses Vector Markup Language which is a rarely used, Microsoft-only Internet graphics format.

At the time, hackers had several successes at exploiting the hole before Microsoft released a patch. Now a very similar VML flaw is being seen in the wild.

The bug allows a hacker to take control of a computer or download adware on a PC using Windows XP Service Pack 2 or Windows 2000 SP 4.

All the victim needs to do is visit a site that has been salted with a dodgy image and it is good night Vienna. The flaw exists in IE 6 and 7 unless the operating system is Vista. Vole has issued a patch. More here.
Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is On
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Internet Exploder 7 delivers old bug, claim Alpine BetaONE News 0 31st Oct 06 09:04 PM
IE Bug Lets Hackers Phish With Google Desktop NewsBot ieXbeta News 0 12th Dec 05 07:00 AM
Hackers publish code for critical IE bug NewsBot NeoWin News 0 22nd Nov 05 12:30 AM
Exploit writers team up to target Cisco routers Alpine BetaONE News 0 2nd Aug 05 08:04 PM
Internet Explorer Hit by Major XSS Bug NewsBot NeoWin News 0 17th Dec 04 04:00 PM


All times are GMT +1. The time now is 06:25 PM.


Design by Vjacheslav Trushkin for phpBBStyles.com.
Powered by vBulletin® Version 3.6.5
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.