Highly critical flaw found in IE

Posted on Friday, Mar 24 2006 @ 22:55 CET by Thomas De Maesschalck
Microsoft yesterday confirmed the existence of an highly critical Internet Explorer security flaw and says it will release a pre-patch advisory with workarounds.
Secunia said in an alert that the vulnerability is due to an error in the processing of the "createTextRange()" method call applied on a radio button control.

"This can be exploited by a malicious Web site to corrupt memory in a way that allows the program flow to be redirected to the heap," Secunia said in the alert, warning that successful exploitation allows execution of arbitrary code whenever the target visits the rigged Web site.
More info at PC Mag


About the Author

Thomas De Maesschalck

Thomas has been messing with computer since early childhood and firmly believes the Internet is the best thing since sliced bread. Enjoys playing with new tech, is fascinated by science, and passionate about financial markets. When not behind a computer, he can be found with running shoes on or lifting heavy weights in the weight room.



Loading Comments