Secunia Advisory: SA37448
Release Date: 2009-11-23
Last Update: 2009-11-24
Critical: Highly critical
Impact: System access
Where: From remote
Solution Status: Unpatched
Software:
Microsoft Internet Explorer 6.x
Microsoft Internet Explorer 7.x
Description:
A vulnerability has been discovered in Internet Explorer, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to an error in the layout parsing and can be exploited to corrupt memory by tricking a user into viewing a specially crafted web page.
Successful exploitation may allow execution of arbitrary code.
The vulnerability is confirmed in IE6 on Windows XP SP2 and IE7 on Windows XP SP3. Other versions may also be affected.
Solution:
Disable support for active scripting for all but trusted websites.
Bollettino di Sicurezza
Solution By Ercolino
Usate FireFox
Release Date: 2009-11-23
Last Update: 2009-11-24
Critical: Highly critical
Impact: System access
Where: From remote
Solution Status: Unpatched
Software:
Microsoft Internet Explorer 6.x
Microsoft Internet Explorer 7.x
Description:
A vulnerability has been discovered in Internet Explorer, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to an error in the layout parsing and can be exploited to corrupt memory by tricking a user into viewing a specially crafted web page.
Successful exploitation may allow execution of arbitrary code.
The vulnerability is confirmed in IE6 on Windows XP SP2 and IE7 on Windows XP SP3. Other versions may also be affected.
Solution:
Disable support for active scripting for all but trusted websites.
Bollettino di Sicurezza
Solution By Ercolino
Usate FireFox