DV Hardware - bringing you the hottest news about processors, graphics cards, Intel, AMD, NVIDIA, hardware and technology!

   Home | News submit | News Archives | Reviews | Articles | Howto's | Advertise
DarkVision Hardware - Daily tech news
January 20, 2019 
Main Menu
News archives

Who's Online
There are currently 113 people online.


Latest Reviews
Arctic BioniX F120 and F140 fans
Jaybird Freedom 2 wireless sport headphones
Ewin Racing Champion gaming chair
Zowie P-TF Rough mousepad
Zowie FK mouse
BitFenix Ronin case
Ozone Rage ST headset
Lamptron FC-10 SE fan controller

Follow us

Attackers exploiting zero-day vulnerability in IE7 and IE8

Posted on Monday, September 17 2012 @ 18:17:41 CEST by

Security researcher Eric Romang discovered that Internet Explorer 7 and 8 users are in danger due to a newly discovered security flaw that's currently being exploited by the same group of cyber criminals that abused the zero-day vulnerability in Java.

Romang discovered the vulnerability while monitoring an infected server that was being used to abuse the zero-day Java flaw. On the server he noticed a file named exploit.html, it loads a Flash file, which in turn loads a file named protect.html that checks if the user runs Internet Explorer 7 or 8 and then exploits the flaw to install a Trojan onto the victim's PC.

In the video clip below, Romang shows how the vulnerability can be exploited to infect a fully-patched Windows XP system.

Windows XP users are advised to use Mozilla Firefox, Google Chrome or another third-party browsers as Windows XP is not supported by Internet Explorer 9. It's unknown when Microsoft plans to patch this issue.



DV Hardware - Privacy statement
All logos and trademarks are property of their respective owner.
The comments are property of their posters, all the rest © 2002-2019 DM Media Group bvba