Internet Explorer XML Processing Memory Corruption
Secunia Advisory: SA33089
Release Date: 2008-12-10
Critical: Extremely critical
Impact: System access
Where: From remote
Solution Status: Unpatched
Software: Microsoft Internet Explorer 7.x
Description:
A vulnerability has been discovered in Internet Explorer, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to an error when processing XML tags and can be exploited to dereference freed memory via a specially crafted HTML document.
Successful exploitation allows execution of arbitrary code.
NOTE: Reportedly, the vulnerability is currently being actively exploited.
The vulnerability is confirmed in Internet Explorer 7 on a fully patched Windows XP SP3. Other versions may also be affected.
Solution:
Do not browse untrusted websites or follow untrusted links.
Bollettino Sicurezza
Soluzione:Usate Firefox 3.0.4
Secunia Advisory: SA33089
Release Date: 2008-12-10
Critical: Extremely critical
Impact: System access
Where: From remote
Solution Status: Unpatched
Software: Microsoft Internet Explorer 7.x
Description:
A vulnerability has been discovered in Internet Explorer, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to an error when processing XML tags and can be exploited to dereference freed memory via a specially crafted HTML document.
Successful exploitation allows execution of arbitrary code.
NOTE: Reportedly, the vulnerability is currently being actively exploited.
The vulnerability is confirmed in Internet Explorer 7 on a fully patched Windows XP SP3. Other versions may also be affected.
Solution:
Do not browse untrusted websites or follow untrusted links.
Bollettino Sicurezza
Soluzione:Usate Firefox 3.0.4
