Appunti Sparsi: Dario Salvelli's Tumblr

Zero Exploit: how to defend to VML IE bug

Read Comments  View blog reactions

There is a new bug on IE 6, that concern VML (Vector Markup Language) vulnerability discovered by Sunbelt, about in-the-wild malware attached reguarded also the fully patched Windows system: the Url from many web sites (especially from Russian) include “MS06-XMLNS&SP2,” string, there is an advisory from Secunia. Microsoft has write a security advisory and tell that will be launch a patch only on October, 10, the next patch day. In order to defend from this vulnerability you have this choice: first use a antivirus software as Symantec, Mcafee, Trend Micro; second, un-register Vgx.dll or modify the access control list, third disable Binary and Script Behaviors in IE. You can finally use another browse like Mozilla Firefox.

[UPDATE, September 28] MSFT has launch a official patch before the patch days: read the official page for more info.

Written the 22 September 2006 11:27 am in Exploit | Trackback URI


One Response to “Zero Exploit: how to defend to VML IE bug”

  1. 1 Written by/Scritto da: bitacle.org 23 September 2006 @ 2:34 am

    Bitacle Blog Search Archive - Zero Exploit: how to defend to VML IE bug

    […] There is a new bug on IE 6, that concern VML (Vector Markup Language) vulnerability discovered by Sunbelt , about in-the-wild malware attached reguarded also the fully patched Windows system: the Url from many web sites (especially from Russian) …

Leave a Reply

  1.  
  2.  
  3.  
 

Menu

International Version

RSS Feed   

Search

Search Dario Salvelli’s Blog

Newsletter

Ricevi gli aggiornamenti del blog per email - Last Posts in your email:

Delivered by FeedBurner



follow darios at http://twitter.com

Last Comments - Ultimi Commenti Category - Categorie
BLOG CICLABILE