Internet Security Systems - AlertCon(TM)

New IE 0day Identified

Posted by Robert Freeman on November 03, 2006 at 2:16 PM EST.

We have identified a new IE 0day pertaining to XML in limited use (in the wild) at the moment. A common trend is that browser attacks start in limited numbers to potentially improve the reliability of the exploit before the inevitable strong spike in related attacks. I expect that this will be used in the near future as a means to install spyware and information theft malware, either by the original authors or perhaps people they may sell the exploit code to. Since my initial blog post we have contacted Microsoft with our analysis and I'll link to their blog when appropriate.

 

Update:

Our alert is live.

Comments or opinions expressed on this Weblog are the opinions of the authors alone. They are not necessarily reviewed in advance by anyone but the individual authors, and neither IBM Internet Security Systems nor any other party necessarily agrees with them. The views expressed by outside contributors and links to outside websites do not represent the views of IBM Internet Security Systems, its management or employees. All content on this Weblog has been made available on an “as-is” basis, and IBM Internet Security Systems shall not be liable for any direct or indirect damages arising out of use of this Weblog.