IE 7 Code Execution Exploit; Yahoo IM Patch
Links du jour: A sampling of useful security stories that may have slipped through the cracks ... |
Aviv Raff has posted a proof-of-concept exploit for a DLL-load hijacking vulnerability in IE 7 that could result in code execution attacks.
Conde Nast's Reddit meme-digger has fessed up to a data theft episode that may have exposed e-mail addresses, usernames and passwords of its users.
Bruce Schneier analyzes 34,000 actual usernames and passwords stolen in a MySpace phishing attack and makes a surprising discovery.
A Russian malware author has released a prototype of SMS-forwarding spyware that hides from the user, loads on startup, copies the text of the last SMS received, and forwards that text in a new SMS to the author.
Yahoo has shipped an ActiveX update to plug a gaping security hole in its Yahoo Messenger client software.
Image files can be easily backdoored to write destructive worms for bulletin boards, blogs, wikis and other types of Web systems.
Enterprise Strategy Group analyst Jon Oltsik makes a convincing argument that BitLocker full disk encryption in Windows Vista makes the new operating system ready for enterprise deployment.
In 2006, Microsoft patched 133 critical and important vulnerabilities, surpassing the total for 2004 and 2005 combined.
Michael Howard reports that two of the most commonly used browser plug-ins--Adobe Acrobat/Reader and Adobe Flash Player--now work properly when DEP is enabled in IE 7.
Multiple HTTP response splitting vulnerabilities in Google AdWords may be exploited by remote attackers to inject arbitrary HTTP headers.
Comments (3)
I was suspicious of the IE7 exploit so I built it and tested it and it didn't work for me. I left a comment on the guy's blog too.
Posted by Larry Seltzer | December 15, 2006 11:10 AM
It's so soon that such severe vulnerability emerges after the release of IE7. In other side, although Firefox 2.0 has alread had a few vulnerabilities report, but they are not so severe as IE7's. IE7 is not as good as expected.
Posted by Richard | December 16, 2006 8:58 PM
After further testing I have been able to get it to execute some, not consistently. Aviv and I have been e-mailing and can't really tell why it's not reliable, but when it fails IE isn't attempting to load the DLL.
Overall I have to disagree with Richard. This isn't a really severe vulnerability. It's got a lot of user interaction and the program has to hit the file system, so it can be picked up by AV software. Maybe a 6 out of 10.
Posted by Larry Seltzer | December 17, 2006 5:54 PM