placement for flash
  • RSS Feed

  • Categories

  • Tags

  • Archive

  • Calendar
<<  September 2010  >>
MoTuWeThFrSaSu
303112345
6789101112
13141516171819
20212223242526
27282930123
45678910

  • Articles by Author

  • Recent posts

  • Blogroll

AIRC Home  
7/7/2009 3:57:00 PM

A dangerous unpatched zero-day vulnerability is exposing Internet Explorer users to attacks

by Mahran Amona

Microsoft has announced that a critical code execution vulnerability in Microsoft Video ActiveX Control can enable attackers to run arbitrary code if users browse to a malicious website. It has been confirmed that a growing number of attacks are currently exploiting the flaw.

This vulnerability affects users with Internet Explorer 6 and 7 on Windows Server 2003 and Windows XP, while Vista and Server 2008 users are not affected. The affected component is part of Microsoft DirectShow, and is installed by default with Windows XP.

Microsoft is working to develop a security update to address this issue. eSafe users, however, are protected against this issue and its resulting security threats.

Additional information is available in this Microsoft Security Advisory.

Update: 15/07/2009 - Microsoft has addressed this vulnerability with Microsoft Security Bulletin MS09-032. Mitre's CVE ID: CVE-2008-0015.

Currently rated 2.0 by 2 people

  • Currently 2/5 Stars.
  • 1
  • 2
  • 3
  • 4
  • 5

Tags: , ,

Vulnerabilities

emailEmail   Digg thisDigg this   del.icio.usdel.icio.us   Slashdot It!Slashdot It!
Permalink | Comments (0)

Comments

 
© Aladdin Knowledge Systems Ltd. 1985-2010. All rights reserved.