New Internet Explorer flaw emerges

By
Follow google news

Microsoft's Security Response Center has acknowledged the appearance of proof-of concept code for a vulnerability in Internet Explorer 7.

New Internet Explorer flaw emerges
A Security Response Center blog posting said that Microsoft will investigate the issue immediately.

The proof-of-concept code targets ADODB.Connection, a component of Microsoft's ActiveX software. There are no reports of the vulnerability being actively exploited by attackers.

The vulnerability could be embedded in a web page or email and could be exploited to cause a denial of service attack, according to the US Computer Emergency Readiness Team (US-Cert).

It is not clear whether an attacker could use the vulnerability to remotely execute code and install malware on a system.

US-Cert said that the vulnerability can be avoided by disabling ActiveX or the ADODB.Connection control. The organisation urges users to avoid clicking on unsolicited links.

Add iTnews as your trusted source

Add iTnews As Your Trusted Source Add iTnews As Your Trusted Source
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
emergesexplorerflawinternetnewsecurity

Sponsored Whitepapers

5 reasons to adopt a mobile first security strategy
5 reasons to adopt a mobile first security strategy
Uncomplicate IT Service Delivery with AI Agents
Uncomplicate IT Service Delivery with AI Agents
Getting ahead of the tech: what’s next for Australian organisations in digital transformation
Getting ahead of the tech: what’s next for Australian organisations in digital transformation
Fintech compliance made fast and secure
Fintech compliance made fast and secure
How to evaluate SIEM solutions Safeguarding your future Get a demo Download guide
How to evaluate SIEM solutions Safeguarding your future Get a demo Download guide

Events

Most Read Articles

Supply chain attack hits 100 million-download Axios npm package

Supply chain attack hits 100 million-download Axios npm package
APRA pulls data submission system after security pentest

APRA pulls data submission system after security pentest
NAB is co-designing a SIEM with Databricks

NAB is co-designing a SIEM with Databricks
WA local gov entity lost $350,000 in phishing attack

WA local gov entity lost $350,000 in phishing attack
techpartner.news logo
Sydney-based AI-cloud waste startup raises $3m
Sydney-based AI-cloud waste startup raises $3m
Brennan uses NiCE to modernise its contact centre
Brennan uses NiCE to modernise its contact centre
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Interactive introduces private cloud platform
Interactive introduces private cloud platform
Digital61 expands cybersecurity portfolio
Digital61 expands cybersecurity portfolio

Log In

  |  Forgot your password?