«
»

IE XML Parsing BoF exploit

A new XML based heap corruption exploit has been published on milwOrm, the exploit affects all versions of IE, tested for IE 6.x, IE 7.x, XP SP2, XP SP3 and Vista which endangers your safety if you use Internet Exploiter for browsing.

The exploit allows someone remotely to download/execute anything on your machine.

Kaspersky Antivirus is able to detect and block the execution of the exploit, however, this might not be true if the exploit was hardcoded. Play safe.

—-

an inside look on the exploit has been written by my brother DATA_SNIPER on his blog, click  H E R E to read about it.

This entry was posted on December 21, 2008 at 4:58 pm and is filed under Security with tags , , , . You can follow any responses to this entry through the RSS 2.0 feed You can leave a response, or trackback from your own site.

3 Responses to “IE XML Parsing BoF exploit”

  1. Xacker Says:
    December 24, 2008 at 3:44 am

    Microsoft has released a patch for this security issue:
    http://www.microsoft.com/technet/security/Bulletin/MS08-078.mspx

    FIX YOURS NOW!

  2. DATA_SNIPER Says:
    December 24, 2008 at 1:51 pm

    salam alikom
    hi AX nice blog ,keep the good w0rk Up :)
    i hav made a litel Article about some malicious idea in this link if you don’t mind
    http://datasniper.arab4services.net/?p=33
    and ill explain how the Code Execution can be done,in STANDALONE article in the blog.

  3. Xacker Says:
    December 24, 2008 at 4:06 pm

    3alykom al salam :)

    welcome brother and thanks for contributing to the security scene with such wonderful tutorials, keep it up! (thumbup)

Leave a Reply