|
-
December 11th, 2008, 02:12 AM
#1
Nice heads up. 
interesting that it doesn't effect Vista users.
-
December 11th, 2008, 07:24 AM
#2
 Originally Posted by t34b4g5
Nice heads up.
interesting that it doesn't effect Vista users.
I'm curious as to where you've seen mention of it not affecting Vista users?
From the Microsoft advisory: "Our investigation so far has shown that these attacks are against Windows Internet Explorer 7 on supported editions of Windows XP Service Pack 2, Windows XP Service Pack 3, Windows Server 2003 Service Pack 1, Windows Server 2003 Service Pack 2, Windows Vista, Windows Vista Service Pack 1, and Windows Server 2008."
The example exploit that SANS ISC discussed doesn't target Vista, most likely due to the limited attack surface of IE 7 in Protected Mode on Vista. It would be entirely possible, however, to target Vista with the vulnerability.
That being said... if you've got another article I'm unaware of.. I'd love to read it.
Side note, anyone wanting to look at the code (since it's been sanitized on the SANS ISC site) send me a PM.
Similar Threads
-
By dalek in forum Microsoft Security Discussions
Replies: 7
Last Post: September 23rd, 2006, 03:46 AM
-
By Black Cluster in forum Microsoft Security Discussions
Replies: 3
Last Post: October 14th, 2005, 08:44 AM
-
By Tiger Shark in forum Microsoft Security Discussions
Replies: 5
Last Post: January 14th, 2005, 08:47 PM
-
By zigar in forum Microsoft Security Discussions
Replies: 3
Last Post: April 4th, 2002, 08:50 PM
Tags for this Thread
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote