Fri, Mar 24 2006 7:51
Don
IE exploit on the loose, going to yellow
Published: 2006-03-24,
Last Updated: 2006-03-24 04:01:25 UTC
by Jim Clausing (Version: 1)
Folks, as Lorna predicted yesterday,
it didn't take long for the exploits to appear for that IE
vulnerability. One has been making the rounds that pops the calculator
up (no, I'm not going to point you to the PoC code, it is easy enough
to find if you read any of the standard mailing lists), but it is a
relatively trivial mod to turn that into something more destructive (in
fact one of our readers, Matt Davis, has provided us with a version
that he created that is more destructive). For that reason, we're
raising Infocon to yellow for the next 24 hours. Workarounds/mitigation
Microsoft has posted this
and suggests that turning off Active Scripting will prevent this
exploit from working. You could, of course, always use another browser
like Firefox or Opera, but remember that IE is so closely tied to other
parts of the OS, that you may be running it in places where you don't
realize you are.
Filed under: Alerts