Microsoft Internet Explorer contains a programming error that may allow a remote attacker to execute commands on a vulnerable system. The attacker needs to supply VBScript to invoke winhlp32.exe, which can then be used to execute commands via a specially crafted .HLP file.
http://www.snort.org/vrt/docs/ruleset_changelogs/changes-2010-02-26.html
Subscribe to:
Post Comments (Atom)
Posts
Subscribe via Email
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.