Second IE flaw discovered in two days
March 30, 2006
Frank Washkuch Jr. 22 Mar 2006 22:37
A new web browser vulnerability made a tough week a little bit tougher for Microsoft.
For the second time in as many days, security researchers discovered a new flaw in Internet Explorer, the latest of which can be employed by a malicious user to compromise a user's PC.
The newest flaw, rated "highly critical," "is caused by an error in the processing of the 'createTextRange()' method call applied on a radio button call," said Secunia. "This can be exploited by e.g. a malicious website to corrupt memory in a way that allows the program flow to be redirected to the heap."
Source: http://www.scmagazine.com/
A new web browser vulnerability made a tough week a little bit tougher for Microsoft.
For the second time in as many days, security researchers discovered a new flaw in Internet Explorer, the latest of which can be employed by a malicious user to compromise a user's PC.
The newest flaw, rated "highly critical," "is caused by an error in the processing of the 'createTextRange()' method call applied on a radio button call," said Secunia. "This can be exploited by e.g. a malicious website to corrupt memory in a way that allows the program flow to be redirected to the heap."
Source: http://www.scmagazine.com/