IE 0-day Used in Attack on Google and Other Companies

01/15/10

08:12:31 pm, by Zach Brewer, 87 words
Categories: Security Advisories, General Security

IE 0-day Used in Attack on Google and Other Companies

Details about the targeted attack on Google (and 34 other firms) now include the use of an IE 0-day (CVE-2010-0249) in addition to known Acrobat vulnerabilities. Microsoft has released a related advisory and public exploit code is now available. This exploit will be increasingly used in drive-by attacks by malware authors. A patch is expected to be available on the next "patch Tuesday" (no out of band patch is expected to be released).

Details:

http://www.microsoft.com/technet/security/advisory/979352.mspx

http://www.securityfocus.com/bid/37815

Permalink

Today's complex security and networking solutions require a great deal of knowledge to successfully support and operate. Priveon uses the field experience of its expert staff to develop and maintain a positive reinforcement loop between business practices and to provide the latest information to our customers. The information posted here is supported by Priveon subject-matter experts.

Search

XML Feeds

RSS 2.0: Posts
Atom: Posts

Priveon Labs Security Blog

IE 0-day Used in Attack on Google and Other Companies

01/15/10

IE 0-day Used in Attack on Google and Other Companies

Search

Categories

XML Feeds

Archives