placement for flash
  • RSS Feed

  • Categories

  • Tags

  • Archive

  • Calendar
<<  November 2009  >>
MoTuWeThFrSaSu
2627282930311
2345678
9101112131415
16171819202122
23242526272829
30123456

  • Articles by Author

  • Recent posts

  • Blogroll

AIRC Home  
7/7/2009 3:57:00 PM

A dangerous unpatched zero-day vulnerability is exposing Internet Explorer users to attacks

by Mahran Amona

Microsoft has announced that a critical code execution vulnerability in Microsoft Video ActiveX Control can enable attackers to run arbitrary code if users browse to a malicious website. It has been confirmed that a growing number of attacks are currently exploiting the flaw.

This vulnerability affects users with Internet Explorer 6 and 7 on Windows Server 2003 and Windows XP, while Vista and Server 2008 users are not affected. The affected component is part of Microsoft DirectShow, and is installed by default with Windows XP.

Microsoft is working to develop a security update to address this issue. eSafe users, however, are protected against this issue and its resulting security threats.

Additional information is available in this Microsoft Security Advisory.

Update: 15/07/2009 - Microsoft has addressed this vulnerability with Microsoft Security Bulletin MS09-032. Mitre's CVE ID: CVE-2008-0015.

Currently rated 2.0 by 2 people

  • Currently 2/5 Stars.
  • 1
  • 2
  • 3
  • 4
  • 5

Tags: , ,

Vulnerabilities

emailEmail   Digg thisDigg this   del.icio.usdel.icio.us   Slashdot It!Slashdot It!
Permalink | Comments (0)

Comments

 
© Aladdin Knowledge Systems Ltd. 1985-2009. All rights reserved.