news4geeks.net
19Jun/120

Attack code published for two actively exploited vulnerabilities in Microsoft software

Posted by vica

Attack code for two actively exploited vulnerabilities in Microsoft software, one of which has not yet been patched, was integrated into the open source Metasploit penetration testing framework.

One of the vulnerabilities is identified as CVE-2012-1875 and is located in Internet Explorer. Attackers can exploit it to execute malicious code by tricking users into visiting a specially crafted Web page or opening a Microsoft Office document that has a malicious ActiveX control embedded into it.

Microsoft addressed the security flaw on Tuesday as part of its MS12-037 security bulletin, but according to security researchers from antivirus vendor McAfee, the vulnerability had been actively exploited in attacks since at least June 1. Read more...

Tagged as: , , , Continue reading
   

Tags

Amazon Android Apple apps browser business China Chrome Cloud data devices Facebook Firefox Google Hackers hardware HP IBM Intel Internet iPad iPhone IT LINUX Malware market Microsoft Mozilla network Nokia Oracle OS RIM Samsung Security smartphones software Sony tablets Twitter web website Windows Windows 8 Yahoo

Categories

Calendar

May 2013
M T W T F S S
« Apr    
 12345
6789101112
13141516171819
20212223242526
2728293031