Microsoft: Hole Exploit Endangers All IE Versions

Dec 13, 2008, 20:02 (3 Talkback[s])
(Other stories by Elinor Mills)

""The exploit sites we've seen so far drop a wide variety of malware--most commonly password stealers like new variants of game password stealers like Win32/OnLineGames, and Win32/Lolyda; keyloggers like Win32/Lmir; trojan horse applications like Win32/Helpud along with some previously unseen malware which we generically detect as Win32/SystemHijack," the Malware Protection Center blog says. "We fully expect the variety of malware being dropped by this exploit to broaden as the exploit code starts to circulate around the Internet underground.""

"People visiting trusted sites could be affected as well from sites targeted by SQL injection attacks through which malicious code is injected into sites, Microsoft says."

Complete Story

Related Stories:

• Internet Explorer: Fewer Bugs Than Firefox and Google Chrome?(Dec 11, 2008)
• IE Share Slips Under 70%; Firefox Surges Past 20%(Dec 03, 2008)
• IE, Firefox, and the Add-on Security Problem(Nov 24, 2008)
• Microsoft 'Interested' in Open Source Browser: Ballmer(Nov 07, 2008)
• Creepy Clickjacking Bug Lets Hackers Control Webcams(Oct 09, 2008)