Active exploits for bugs in IE 6 & 7 are now in the wild. It is time to upgrade to IE 8 or another browser of your choice. Read more here.
Blog Archives
MicroSoft Says Don’t Press F1 for Help
A new flaw has been discovered in IE that could allow an attacker to take control of your computer. …attackers could exploit it by feeding users malicious code disguised as a Windows help file — such files have a “.hlp”…
Patch available for the IE exploit along with seven others
Microsoft has released a patch for the IE exploit dubbed Aurora and seven other vulnerabilities. You can get the updates via Windows Update. Details of the patches can be found here: http://www.microsoft.com/technet/security/Bulletin/MS10-002.mspx
Malware now exploiting the IE flaw
There is now malware in the wild exploiting the IE flaw as reported here. If you haven’t already followed the suggestions there you should do so now.
UPDATE: Internet Explorer 0-Day Exploit Allows Remote Code Execution
Microsoft is going to release a special patch for this exploit. I will update this post when they announce the date of the patch availability. See http://blogs.technet.com/msrc/archive/2010/01/19/security-advisory-979352-going-out-of-band.aspx UPDATE: The patch should be released tomorrow January 21st. UPDATE: The patch…
Tagged with: 0-day, exploit, ie, Internet Explorer, patch, zero day
Posted in Internet Explorer, windows
Posted in Internet Explorer, windows
Internet Explorer 0-Day Exploit Allows Remote Code Execution
What is is: A malicious website can be crafted that will allow IE to be compromised and allow code to be executed on your computer. What is affected: Internet Explorer versions 6, 7 and 8. What you can do: Get…
Tagged with: 0-day, exploit, ie, Internet Explorer, zero day
Posted in Internet Explorer, malware, windows
Posted in Internet Explorer, malware, windows
