|28 Jan 2010||#1|
| || |
New Attack Uses I E's Own Features Against It.
Microsoft investigating threat, considering patch, or offering guidance for protection.
A researcher at Black Hat DC next week will demonstrate how an attacker can steal files from a victim's machine by abusing a combination of actual features in Internet Explorer.
Jorge Luis Alvarez Medina, a security consultant with Core Security Technologies, says popular features in IE, such as URL Security Zones and the browser's file-sharing protocol, can together be abused to execute an attack that results in the attacker being able to read all files on the victim's machine. Medina plans to release proof-of-concept code for the attack next month after Black Hat DC, and after Microsoft issues a security update for the attack, which affects IE versions 6 and above, he says.
|My System Specs|
|Similar help and support threads for: New Attack Uses I E's Own Features Against It.|
|DDoS Attack, Changed IPs Still Under Attack||System Security|
|BF3 under attack||Gaming|
|Am I under attack?||System Security|
|May I safely disable "Media Features" from "Windows Features" menu?||Media Center|
|Features Question - Program & Features||Performance & Maintenance|
|MAC Attack||System Security|
|New SSL attack.||Security News|
|Our Sites ||Site Links ||About Us ||Find Us |
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.
© Designer Media Ltd
All times are GMT -5. The time now is 03:55 AM.