[funsec] Extremely critical Windows XMLHTTP ActiveX 0-day reported

Juha-Matti Laurio Sat, 04 Nov 2006 16:27:32 -0800

More information is available via

Microsoft Security Advisory #927892
"Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution"
http://www.microsoft.com/technet/security/advisory/927892.mspx


"Microsoft XMLHTTP ActiveX Control Code Execution Vulnerability"
http://secunia.com/advisories/22687/

and

"ActiveX - reason of the newest Windows 0-day, again"
http://blogs.securiteam.com/?p=717

This code execution vulnerability is target of active exploitation already.

- Juha-Matti


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

[funsec] Extremely critical Windows XMLHTTP ActiveX 0-day reported

Reply via email to