Widely used Web attack toolkit exploits unpatched MSXML flaw
An exploit for an unpatched vulnerability in the MSXML (Microsoft XML Core Services) has been incorporated into Blackhole, one of the most widely used Web attack toolkits, according to security researchers from antivirus firm Sophos.
The security flaw is identified as CVE-2012-1889 and is what security researchers call a zero-day vulnerability — an actively exploited vulnerability for which an official patch doesn’t yet exist.
Be sure to keep that anti-virus up-to-date and also utilize the Fix-It tool Microsoft has made available.
- Hackers exploit Windows XML Core Services flaw (infoworld.com)
- Danger! Unpatched Microsoft security vulnerability being actively exploited (nakedsecurity.sophos.com)
- CVE2012-1889: MSXML use-after-free vulnerability (eset.com)
Posted on July 5, 2012, in attacks, Microsoft, Security, vulnerability, Web and tagged Exploits, InfoWorld, Internet Explorer, Microsoft, MSXML, Sophos, World Wide Web, Zero day attack. Bookmark the permalink. Comments Off on Widely used Web attack toolkit exploits unpatched MSXML flaw.