Professional Webmasters Community
Would you like to react to this message? Create an account in a few clicks or log in to continue.
Professional Webmasters Community

your are free to explore your reviews, thoughts, suggestion and guidelines on every online tech talk.


0day Internet Explorer Exploit Released

Professional Webmasters Community :: Webmaster Speak :: Tech Talk

Go down

0day Internet Explorer Exploit Released Empty 0day Internet Explorer Exploit Released

Post  andry Tue Nov 02, 2010 12:42 am

Microsoft Internet Explorer CSS Handling Code Execution Vulnerability

A vulnerability has been identified in Microsoft Internet Explorer, which could be exploited by attackers to compromise a vulnerable system. This issue is caused by a dangling pointer in the Microsoft HTML Viewer (mshtml.dll) when retrieving certain CSS/STYLE objects via the "getElementsByTagName()" method, which could allow attackers to crash an affected browser or execute arbitrary code by tricking a user into visiting a malicious web page.

Affected Products

Microsoft Internet Explorer 7
Microsoft Internet Explorer 6

More info: http://www.vupen.com

See also IE6 and IE7 0-Day Reported

Exploit: http://downloads.securityfocus.com
andry
andry
Moderator
Moderator

Posts : 467
Join date : 2010-05-07

Back to top Go down

Back to top

- Similar topics

Professional Webmasters Community :: Webmaster Speak :: Tech Talk

 
Permissions in this forum:
You cannot reply to topics in this forum