Security firm finds extremely critical flaw in Windows
Exploits already traced in the wild
|
NEWS: 7 November 2006 11:08 GMT by Amber Maitland
Security firm Secunia has found another flaw in Windows, this time in the Microsoft XML Core Services.
The flaw, which is located specifically in the XMLHTTP 4.9 ActiveX Control, allows hackers to gain control of PCs when users visit a malicious website using Internet Explorer. Secunia has rated it as “Extremely critical” as it’s already being exploited.
Microsoft has already responding by posting on the Security Response Team Centre blog and on it security site. It says that it’s aware of “limited” attacks but that a security update will be released, either in the monthly update or in an out-of-cycle release.
It affects people using Windows 2000 server products and 2000 Professional, as well as Server 2003 products, and XP Home and Professional editions.
Secunia has also previously reported what it claims are two flaws in IE7 shortly after the application was released; Microsoft countered that one was actually a bug in Outlook, not in IE7.
disable ad
Have Your Say
|
|
Latest in Software
NEWS VIDEO: Tech week in view 05/09/08NEWS Weekly news roundup - 05/09/08NEWS Daily news roundup - 05/09/08NEWS Comment: Microsoft's Gates/Seinfeld ad bombs NEWS VIDEO: Seinfeld and Gates star in Microsoft's new campaign Latest on Pocket-lint.co.uk
NEWS Latest Apple iPod nano spy shot revealedNEWS Nokia N96 gets BBC iPlayer NEWS VIDEO: Tech week in view 05/09/08NEWS Weekly news roundup - 05/09/08NEWS Daily news roundup - 05/09/08
Top Stories
 The Beeb lifts the lid on its musical tastes
|  New campaign gets panned by public and industry alike
|  More predictions from Kevin Rose's crystal ball
|
Came straight to this page? Visit Pocket-lint.co.uk for all the latest news and reviews.
disable ad
Previous story
