Jump to content
Posted 21 March 2006 - 10:41 PM
Posted 22 March 2006 - 04:12 PM
Secunia Research has discovered a vulnerability in Microsoft Internet Explorer, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to an error in the processing of the "createTextRange()" method call applied on a radio button control. This can be exploited by e.g. a malicious web site to corrupt memory in a way, which allows the program flow to be redirected to the heap.
Successful exploitation allows execution of arbitrary code.
The vulnerability has been confirmed on a fully patched system with Internet Explorer 6.0 and Microsoft Windows XP SP2. The vulnerability has also been confirmed in Internet Explorer 7 Beta 2 Preview. Other versions may also be affected.
Posted 22 March 2006 - 08:56 PM
Posted 24 March 2006 - 07:47 AM
Posted 24 March 2006 - 08:05 AM
Microsoft has put out a warning on a new, nasty, unpatched vulnerability in Internet Explorer. Proof-of-concept exploits are already out.
Disable IE's active scripting or switch to any other browser. Not necessarily Firefox - just any other browser.
Posted 24 March 2006 - 12:38 PM
Posted 24 March 2006 - 12:46 PM
The vulnerability has also been confirmed in Internet Explorer 7 Beta 2 Preview.
0 members, 0 guests, 0 anonymous users