New IE Zero-Day Exploit…

A new zero-day exploit has been identified for Internet Explorer in the wild. There is still no CVE numbering or data, but the vulnerability is associated with a flaw related to the manipulation of the img arrays that could allow a context dependent attacker to  execute arbitrary code.

References:

http://eromang.zataz.com/2012/09/16/zero-day-season-is-really-not-over-yet/
https://www.virustotal.com/file/70f6a2c2976248221c251d9965ff2313bc0ed0aebb098513d76de6d8396a7125/analysis/1347710461/
https://www.virustotal.com/file/9d66323794d493a1deaab66e36d36a820d814ee4dd50d64cddf039c2a06463a5/analysis/1347710777/
http://pastebin.com/wEYtDvm8
http://postimage.org/image/zf4qdbmuf/
http://osvdb.org/85532

Tagged , , , , ,
%d bloggers like this: