Widespread attacks exploit newly patched IE bug
Jan 23, 2010, 18:03 (3 Talkback[s])
(Other stories by Robert McMillan)
"The first widespread attack to leverage a recently patched flaw
in Microsoft's Internet Explorer browser has surfaced.
"Starting late Wednesday, researchers at antivirus vendor
Symantec's Security Response group began spotting dozens of Web
sites that contain the Internet Explorer attack, which works
reliably on the IE 6 browser, running on Windows XP. The attack
installs a Trojan horse program that is able to bypass some
security products and then give hackers access to the system, said
Joshua Talbot, a security intelligence manager with Symantec.
"...The Google attack hit IE 6 on Windows XP, but over the past
week hackers have found ways to exploit the flaw on more recent
versions of the browser as well."