Attacks Against Unpatched Microsoft Bugs Multiply

Attacks Against Unpatched Microsoft Bugs Multiply
Gregg Keizer, Computerworld

Jul 14, 2009 6:31 pm

http://www.pcworld.com/article/168424/attacks_against_unpatched_microsoft_bugs_multiply.html?tk=nl_dnx_h_crawl

Attacks exploiting the latest Microsoft vulnerability are quickly ramping up in quantity and intensity, several security companies warned today as they rang alarms about the developing threat.

Symantec, Sunbelt Software and SANS’ Internet Storm Center (ISC) bumped up their warnings yesterday after Microsoft announced that attackers were exploiting a bug in an ActiveX control used by Internet Explorer (IE) to display Excel spreadsheets. There is no patch for the vulnerability, nor will Microsoft release one later today when it issues its July batch of patches.

A temporary fix that sets the “kill bits” of the ActiveX control is available, but experts believe it’s likely most users won’t take advantage of the protection.

(more at the link above…)

* If there’s a fix for something like this that is getting increased exploitation … it’s a good idea to get whatever fix they have. When they are calling it “Zero Day” exploit - then it’s time to do something. In other words as cutesy as it seems it might be time to get “Mr. Fixit” from Microsoft here:

http://support.microsoft.com/default.aspx/kb/973472

—

Alan Spicer

http://www.marinetelecom.net

This entry was posted on 16. July 2009 at 15:12 and is filed under Main. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response or trackback from your own site.