Wednesday, July 11, 2007

Zero-Day Hits IE-Firefox Combo

Security researcher Thor Larholm has discovered a [Highly critical] zero-day vulnerability that could lead to remote attackers hijacking systems running both Internet Explorer and Firefox. Larholm is calling this an IE zero day, blaming the vulnerability on an input validation flaw in Internet Explorer that allows users to specify arbitrary arguments to the process responsible for handling URL protocols. It's the same type of input validation vulnerability that Larholm discovered in the Safari 3 beta.

Read the article HERE.

0 Comments:

Post a Comment

<< Home