DoS Exploit for MS-053



Incidents.org has the story on an “in the wild” exploit for MS-053 vulnerability. The patch is out, so if you haven’t already – go ahead with the patching. The vulnerability is entitled “Vulnerabilities in Graphics Rendering Engine Could Allow Code Execution (896424)”. The exploit causes 100% cpu utilitzation on visiting a page with a specially crafted file using Internet Explorer. The “attacking” page could essentially cause a system freeze.


Remember though, the javascript (unpatched) vulnerability of last week was ORIGINALLY marked at a DoS only vuln, last week it was discovered that Remote Code Execution was possible. So, any remote vulnerability should be treated with urgency in patching.

Related Posts

Blog Traffic Exchange Related Posts
  • Update on Internet Explorer Exploit in the wild If you use Internet Explorer to browse the web, I'd suggest finding the instructions to disable active scripting, or drop it and use something else in light of the recent exploit floating around. It seems that in spite of Microsoft's infinite wisdom that "Microsoft has determined that an attacker who......
  • F-Secure patches security vulnerabilities I've seen several reports on F-Secure's security bulletin about a code execution vulnerability. The announcement on the f-secure blog mentions that it affects several versions of their products on Windows and Linux. They're not currently aware of any attacks, but suggest patching pre-emptively. They also give a thanks to the......
  • Bad week for Cisco, security headaches For starters, there was this advisory last week in response to a planned talk at a hacker convention on the possibility of a cisco router ipv6 exploit. The advisory detailed a LOCAL exploit and not the remote exploit that the talk was centered around. There was legal action against the......
Blog Traffic Exchange Related Websites
  • How to Raise the Rank of one's Website Ranking your website higher in Google is not just about doing the basic SEO things you need to do, it is more about you working your way up within the page rankings. If you aren't super familiar with the world of SEO you are probably wondering exactly how it is......
  • Microsoft Security Bulletin Summary for July 2010 MS10-042 - Vulnerability in Help and SupportCenter Could Allow Remote Code Execution (2229593) "This security update resolves a publicly disclosed vulnerability in the Windows Help and Support Center feature that is delivered with supported editions of Windows XP and Windows Server 2003. This vulnerability could allow remote code execution if......
  • 60 Pounds in 12 weeks… 4.4 Pounds in 2 Weeks This being the first weigh-in in two weeks I was a little nervous... Especially since we had spent the 4th on a mini vacation Sonoma and I consumed just a little too much wine. In addition there was a celebratory birthday dinner for a family member thrown in after Sonoma. I have......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site