IE Flaw Exploit In Hacker Kit 'Raises the Stakes'

Posted by Soulskill on Monday November 8, 2010 @10:09AM from the calling-a-bluff dept.

CWmike writes "Roger Thompson, chief research officer of AVG Technologies, said Sunday that an exploit for the newest IE flaw had been added to the Eleonore crimeware attack kit. 'This raises the stakes considerably, as it means that anyone can buy the kit for a few hundred bucks, and they have a working zero-day,' Thompson said on his company's blog. Microsoft has promised to patch the vulnerability, but last week said the threat didn't warrant an 'out-of-band' update. Microsoft will deliver three security updates Nov. 9, but won't fix the IE bug then."

1 of 96 comments (clear)

Min score:

Reason:

Sort:

Do other AV companies handle this by BadAnalogyGuy · 2010-11-08 10:21 · Score: 0, Offtopic

Ever since AVG decided to break compatibility with previous versions and introduce nagware in their current products, I have decided to avoid Grisoft.
Are there AV solutions available that handle this latest problem yet? Does MS Security Essentials do it?