“UK group of hackers has published a zero-day exploit which puts means IE users only have to visit a site to be attacked. Computer Terrorism’s exploit allows a remote hacker to take complete control of a Windows system. To prove Computer Terrorism’s system worked, it posted a proof-of-concept exploit, available here, which launches the Windows Calculator. The flaw is based on a Javascript Window() vulnerability which Microsoft has known about for several months. However Vole has been mistakenly treating it as a low-priority denial-of-service flaw, a spokesComputer Terrorist said.”Here is some more Tech News from around the web:
Tech Talk
- Remote-attack risk in patched IE @ CNET
- New RISC OS machine coming soon @ The Inquirer
- MSI Factory Tour at Kunshan @ Hardware Zone
- Digital Signal Processing Explained @ The TechZone
- Supermicro: Going Servers Was the Right Decision @ X-bit Labs
- Kodak CX7530 5.0MP Digital Camera @ ThinkComputers.org
- Xbox 360 – Back to the Future @ Firing Squad
- Microsoft Xbox 360 @ [H]ard|OCP
- The 12 Days of Christmas Bona Fide Style
- The Ars Technica 2005 holiday shopping guide
- Buying Guide: Holiday 2005 Gifts @ Designtechnica
We’re doomed I tell you! Doomed!
Ok, I guess we’ve all heard it before, and we’re still here, so the sky probably isn’t falling. A javascript exploit has been found on the web, which can allow code execution on your machine, when you use IE. The Inquirer has a story up, as well as a link to a site which has posted the code used in the exploit, so you can see what is going on.
