Internet Explorer zero-day exploit?



The folks over at The Sans Institute (Incidents.org) are reporting on a possible zero-day ( 0-day ) exploit against Microsoft Internet Explorer. (A zero day exploit is the name given to an exploit of a previously unknown vulnerability.) Their analysis essentially had the machine they were using go to 100% cpu and it did not give the claimed behavior. They’re thinking this may just be an exploit of one of the other vulnerabilities disclosed Tuesday (MS05-038)



I wonder, if it is a zero-day if this would force MS to break out of their “once a month disclose and patch vulnerabilities” schedule. I would hope they’re taking as close a look at this as SANS is.

Related Posts

Blog Traffic Exchange Related Posts
  • WMF vulnerability checker The same person that has given the New Year's gift of an unofficial patch for the WMF exploit circulating has also provided a WMF vulnerability checker, download and install, it will tell if you're vulnerable. Post is available here. According to the first comment it seems as though the vulnerability......
  • Internet Explorer 0-day (take 2 of the last few days...) The last zero day (activeX) seems to be less interesting than this NEW zero-day that really made a news splash in the last day. It looks as though this NEW 0-day affects VML... Incidents.org has good coverage here. Microsoft has an advisory up and they expect to release a patch......
  • Update on Internet Explorer Zero Day exploit Yesterday I mentioned a SANS report on a possible zero day exploit against Internet Explorer. Today they have more details in the handlers diary. Among other things SANS has issued a patch for it. Essentially the zero day (or previously unknown) vulnerability deals with a .Net framework file, msdds.dll .......
Blog Traffic Exchange Related Websites
  • What is Patch Tuesday? Excellent explanation of Patch Tuesday by TMI Engineering Patch Tuesday is the second Tuesday of each month, the day on which Microsoft releases security patches. Starting with Windows 98, Microsoft included a "Windows Update" system, that would check for patches to Windows and its components which Microsoft would release intermittently. With......
  • Starting Social Security Early - Break-Even Age Actuarial Analysis The debate over when to start receiving Social Security Retirement Benefits rages on. I have written about it many times, as have others. My general impression is that there is a large group of folks who hit 62, are inclined to take their benefits just to have the money, then......
  • What is a Secured Credit Card? If you have poor credit, or less than perfect credit, you may be excited by offers in the mail for credit cards that appear to be designed specifically for you. They promise no credit checks, excellent interest rates, no annual fees, and if you have bad credit, it's ok! But......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site