There are reports that web sites are already exploiting the Internet Explorer TextRange () flaw to install spyware on vulnerable computers. As of Monday morning, more than 200 such sites have been detected. The flaw exists in IE 6 and IE 7 beta 2; this marks the third IE vulnerability disclosed in one week. Microsoft is developing a fix. Users are advised to disable Active Scripting in IE.
Source: Internet Storm Center
http://isc.sans.org/diary.php?storyid=1223
http://isc.sans.org/diary.php?storyid=1221
http://isc.sans.org/diary.php?storyid=1223
http://isc.sans.org/diary.php?storyid=1221
No comments:
Post a Comment