10/26/2006

AOL Patches Critical Browser Bug

Filed under: — By Aviran Mordo @ 3:49 pm

An ActiveX control shipped with AOL’s Web access software can be used by attackers to hijack users’ PCs, security companies said Thursday. AOL has released a fix, and urged users to log on to obtain it.

According to Reston, Va.-based iDefense Labs, America Online 9.0 Security Edition — which is based on Microsoft’s Internet Explorer 6.0 browser — uses an ActiveX control dubbed “YGPPDownload” that can be exploited using two separate flaws in the control’s code.

Source: TechWeb

 

Leave a Reply

You must have Javascript enabled in order to submit comments.

All fields are optional (except comment).
Some comments may be held for moderation (depends on spam filter) and not show up immediately.
Links will automatically get rel="nofollow" attribute to deter spammers.

Powered by WordPress