Slashdot Mirror

← Back to Stories (view on slashdot.org)

Code Posted For New IE Exploit

Posted by ryuzaki0 on from the not-quite-zero-day dept.

PC World is reporting that two days ago hackers posted code for a new vulnerability in Internet Explorer that could allow drive-by takeover of a vulnerable PC. Security companies say that no exploits using the "daxctle" vulnerability have yet been found in the wild, but they are taking the new threat seriously. Symantec calls the bug "critical" and Secunia rates it highly critical, the most severe rating. The hackers who posted the sample code, xsec.org, refer to it as a "0day" exploit. The article quotes another security expert who calls this label "a stretch." Update: 09/17 18:00 GMT by C :Fixed link to XSec. Thanks for pointing that one out, folks.

2 of 123 comments (clear)

  1. Re:Since /.'s already turned into bugtraq... by Mixel · · Score: 1, Offtopic

    Okay, one of my few attempts to be funny... and I totally fuck up. Figures. I hate sensitive trackpads. Won't be trying this again for a while.

  2. Re:Since /.'s already turned into bugtraq... by Mixel · · Score: 0, Offtopic

    People: check on 'No Karma Bonus' when posting side comments. Your every word does NOT warrant being made at +2.

    First post was a premature accident. My second post was +1, but then modded +2 'Underrated'. Which is a strange, but some slashdotters are apparently very kind and are happily to forgive me for my sillyness.