Second zero-day hole sinks Windows

Discussion in 'Computer Support' started by Au79, Nov 11, 2006.

  1. Au79

    Au79 Guest

    Au79, Nov 11, 2006
    1. Advertisements

  2. Au79

    elaich Guest

    elaich, Nov 11, 2006
    1. Advertisements

  3. Au79

    Leythos Guest

    The vulnerability lies in an ActiveX control called the WMI Object
    Broker control, contained in the WmiScriptUtils.dll, Microsoft said. For
    a successful attack, a user would have to be lured to a website designed
    to exploit the flaw, but exploitation doesn't require any other user
    interaction. Microsoft cautioned against following links in emails from
    unknown senders, since those could lead to an attacker's site.

    Which is why all security people tell you that ActiveX is a bad thing,
    that you should not use an ActiveX installed browser, and you should
    only browse to trusted sites.
    Leythos, Nov 11, 2006
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.