Our labs have confirmed this and it is quite nasty. Best bet for now is to set the killbits. Or don't use IE.
Some references: Microsoft: http://www.microsoft.com/technet/security/advisory/972890.mspx SANS: http://isc.sans.org/diary.html?storyid=6733 I would take this one quite seriously. Alex Alex Eckelberry, CEO Sunbelt Software 33 N. Garden Avenue, Clearwater, FL 33755 p: 727-562-0101 x220 e: [email protected] <mailto:[email protected]> MSN: [email protected] <mailto:[email protected]> w: www.sunbeltsoftware.com <http://www.sunbeltsoftware.com> b: www.sunbeltblog.com <http://www.sunbeltblog.com> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
