Slashdot Mirror


Microsoft Warns of New Video ActiveX Vulnerability

ucanlookitup writes "Microsoft has warned of a 'privately reported' vulnerability affecting IE users on XP or Windows Server 2003. The vulnerability allows remote users to execute arbitrary code with the same privileges as the users. The vulnerability is triggered when users visit a web site with malicious code. 'Security experts say criminals have been attacking the vulnerability for nearly a week. Thousands of sites have been hacked to serve up malicious software that exploits the vulnerability.' The advisory can be found at TechNet. Until Microsoft develops a patch, a workaround is available."

3 of 146 comments (clear)

  1. Oh well. by A.+B3ttik · · Score: 3, Funny

    affecting IE users on XP

    Good thing none of them read Slashdot.

  2. better workaround by DanWS6 · · Score: 5, Funny
  3. couldn't microsoft by circletimessquare · · Score: 4, Funny

    just warn us when they have found no exploits at all?

    meanwhile, we would just assume the default status is that everything is exploitable

    it would cut down on the announcements by an order of magnitude

    --
    intellectual property law is philosophically incoherent. it is your moral duty to ignore it or sabotage it