Communications > Security

New zero day virus on the move

Finds a VML vulnerability inside IE

By Nick Farrell

Tuesday, 19 September 2006, 16:45

SECURITY outfit Sunbelt says that it has seen a nasty new Zero Day exploit which exploits a VML vulnerability in IE.

Writing in his bog, Sunbelt's research boffin Eric Sites said that the hack was discovered coming from a pron site. We guess someone was testing the porn site for security issues when they noticed the exploit taking place.

The exploit uses a bug in VML in Internet Explorer to overflow a buffer and inject shellcode. It has been seen at a number of different sites since its first appearance.

The exploit can be stopped by turning off Javascripting. Alternatively, you could wipe Windows from your hard-drive and install Linux with Firefox. µ

PR spinner insists Vista kernel is secure Comment Only Device I/O Control is buggy Thursday, 4 December 2008, 13:24 PM Read more	Windows 7 is enough to kill Linux on the desktop Should damage Apple too Wednesday, 14 January 2009, 11:22 AM Read more
Aussie net filtering scheme has serious security risks Kangaroo cockup Wednesday, 17 December 2008, 18:52 PM Read more	Microsoft to kill off Internet Explorer End of development line Wednesday, 11 March 2009, 16:10 PM Read more
Mozilla Foundation tackles Firefox bug Javascript vulnerability Wednesday, 15 July 2009, 10:42 AM Read more	Google hacks IE Turns it into Chrome Wednesday, 23 September 2009, 12:36 PM Read more

< Previous article| Next article >

Comments

There are no comments submitted yet. Do you have an interesting opinion? Then be the first to post a comment.

Most read
Most commented
Most popular

INQ Whitepapers

Will you be buying a new computer this Christmas?

Yes, a new computer will be under the tree

Yes, a netbook will fit my stocking nicely

No, but will be upgrading some components / building my own

No, my computer works fine if I change the oil often enough

Bah humbug, I'll wait for the January sales to decide

View other polls

©Incisive Media Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, is a company registered in the United Kingdom with company registration number 04038503

SEARCH :

Site Credentials:

Business & Technology websites:

Business research resources:

Products:

Investment Market IT websites:

Find out what you are worth:

Search for a job:

Recruitment Agency A-Z Directory: All
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

New zero day virus on the move

Share this:

Business Intelligence Software

Customer Relationship Management (CRM)

Enterprise Accounting Software

Enterprise Resource Planning (ERP)

Enterprise Systems Management

Senior C, ASP.NET Develope

-Exciting E-commerce brand ...

Read more

Desktop Support Analyst He

IT Support / Desktop Suppor...

Read more

Web/Project support - Poss

A fast growing and profitab...

Read more

Sage 200 Consultant - work

Sage 200 Consultants - brin...

Read more

SunSystems Implementation

One of the world's leading ...

Read more