Computer Tips -Tech Info

Incidents.org has the story on an “in the wild” exploit for MS-053 vulnerability. The patch is out, so if you haven’t already – go ahead with the patching. The vulnerability is entitled “Vulnerabilities in Graphics Rendering Engine Could Allow Code Execution (896424)”. The exploit causes 100% cpu utilitzation on visiting a page with a specially crafted file using Internet Explorer. The “attacking” page could essentially cause a system freeze.

Remember though, the javascript (unpatched) vulnerability of last week was ORIGINALLY marked at a DoS only vuln, last week it was discovered that Remote Code Execution was possible. So, any remote vulnerability should be treated with urgency in patching.

Popularity: 1% [?]

Similar Posts

• Exploit for Unpatched Internet Explorer vulnerability
• 3 Critical Microsoft Updates, 1 Important, 1 Moderate and 1 re-released
• More WMF problems for Windows
• Microsoft December 2005 Security updates
• Network Security guide for the home or small business network – Part 14 – Alternative software

This entry was posted on Tuesday, November 29th, 2005 at 11:01 am and is filed under Computers, Security. You can follow any responses to this entry through the RSS 2.0 feed. Responses are currently closed, but you can trackback from your own site.