New Security Bug Discovered In IE6
Winga
MrSouth Africa Icrontian
A new zero-day attack affecting IE 6 browsers has been discovered. VeriSign's iDefense have confirmed that numerous dodgy porn websites are already exploiting this flaw.
By merely clicking a link, malicious software can be loaded, unbeknown to the user, onto a vulnerable Windows PC. French Security Incident Response Team and Secunia have given the problem their most serious rating. Evidence has been uncovered that nasty porno sites are using this flaw to install vast amounts of adware on to people’s machines. A Windows component called "vgx.dll" is responsible for the flaw.
By merely clicking a link, malicious software can be loaded, unbeknown to the user, onto a vulnerable Windows PC. French Security Incident Response Team and Secunia have given the problem their most serious rating. Evidence has been uncovered that nasty porno sites are using this flaw to install vast amounts of adware on to people’s machines. A Windows component called "vgx.dll" is responsible for the flaw.
Source: TechSpotMicrosoft plans to fix the flaw as part of its monthly patching cycle on 10 October, but this will mean that the problem will persist for even diligent users until that time. The fix will not come anywhere near soon enough, according to Websense, who expect that the number of attacks utilising this flaw will explode.
0
Comments
Yea M$ don't mind if tens of thousands of PC's get infected while we have to wait for a patch, but heaven forbid if a few people steal from them and their customers by taking advantage of the cracked DRM. Nooo then they able to release a fix in less than 3 days.
so uh, what about the good porno sites? Are those cool. I mean, my...uh...friend wants to know.
If the website looks great, you're okay.
If it looks like a website from hell, stay away. It probably is.
Typical Micro$h!t though... I love Linux and OSX
My...friend...is relieved to hear that.