9/29/2006

Exploit Code Published for Unpatched IE Vulnerability

Filed under: — By Aviran Mordo @ 8:42 am

Malware researcher H.D. Moore, co-founder of the Metasploit Framework, has published software exploit code meant to prove that a vulnerability in Microsoft’s Internet Explorer browser that he first publicized in July remains unpatched and capable of being attacked.

According to Moore, and other security researchers including Copenhagen, Denmark-based Secunia, the IE-borne vulnerability has been confirmed as legitimate on Windows computers running Internet Explorer 6.0 and Microsoft’s Windows XP Service Pack 2.

The glitch can be exploited to corrupt a computer’s memory using a malicious Web site, and could allow execution of arbitrary code if taken advantage of, the security company said.

Source: eWeek

 

Leave a Reply

You must have Javascript enabled in order to submit comments.

All fields are optional (except comment).
Some comments may be held for moderation (depends on spam filter) and not show up immediately.
Links will automatically get rel="nofollow" attribute to deter spammers.

Powered by WordPress