June 12, 2012

Microsoft XML vulnerability under active exploitation

Posted by Andrew Lyons, Security Engineer

Today Microsoft issued a Security Advisory describing a vulnerability in the Microsoft XML component. We discovered this vulnerability—which is leveraged via an uninitialized variable—being actively exploited in the wild for targeted attacks, and we reported it to Microsoft on May 30th. Over the past two weeks, Microsoft has been responsive to the issue and has been working with us. These attacks are being distributed both via malicious web pages intended for Internet Explorer users and through Office documents. Users running Windows XP up to and including Windows 7 are known to be vulnerable.

As part of the advisory, Microsoft suggests installing a Fix it solution that will prevent the exploitation of this vulnerability. We strongly recommend Internet Explorer and Microsoft Office users immediately install the Fix it while Microsoft develops and publishes a final fix as part of a future advisory.

4 comments:

  1. UnknownJune 12, 2012 at 4:59 PM

    Time to search an exploit and test this issue.

    ReplyDelete
  2. AntonJune 14, 2012 at 8:28 AM

    "We discovered this vulnerability"
    "M$ thanks:
    Google Security Team for working with us on the MSXML,

    Qihoo 360 Security Center for reporting the MSXML "

    M$ never been honest.

    ReplyDelete
  3. UnknownJune 15, 2012 at 9:52 AM

    Should I run the fix if I'm not running IE?

    ReplyDelete
  4. cryptJune 26, 2012 at 12:19 PM

    Josep, you'd better run... run away from Windows.

    ReplyDelete

You are welcome to contribute comments, but they should be relevant to the conversation. We reserve the right to remove off-topic remarks in the interest of keeping the conversation focused and engaging. Shameless self-promotion is well, shameless, and will get canned.

Note: Only a member of this blog may post a comment.