All the latest UK technology news, reviews and analysis

Hackers exploit second Microsoft flaw

by Iain Thomson

16 Aug 2005

Comment: 1

  • Tweet this

Exploit code has been found in the wild that targets a Microsoft vulnerability that the software giant patched just last week, security experts warned today.

Web monitoring firm Websense reported that a Swedish-hosted website has been engineered with malware built in that exploits a flaw in unpatched versions of Internet Explorer. The flaw allows hackers to gain complete control of PCs visiting the infected site.

"At this time, malicious websites have been observed to exploit this vulnerability by downloading and running code on the end user's machine," said the company in a statement.

"We expect to see additional exploits of MS05-038 in the near future, as it is very new and allows privileged access to the machine."

The website containing the code purports to be advertising pharmaceutical products and its URL has been spammed out to millions of inboxes. Owing to a small flaw in the malware, visitors to the site will also suffer a browser crash.

This is the second Microsoft patch to be cracked in less than a week. Exploit code for another patch appeared on Friday and by Monday had been used in a worm that is hitting Windows 2000 systems particularly hard.

Do you agree?

 

Add your comment

We won't publish your address
By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.

Poll

The workplace of the future poll - in association with IBM

What will be the biggest change to corporate technology in the future?

89%

6%

1%

3%

1%

Connect with V3.co.uk

Sign up to our daily or weekly newsletters

Riso

Colour printing: why the bill keeps outstripping the budget

The wrong printers, for the wrong tasks on the wrong contracts

Qlikview

Magic quadrant for business intelligence platforms

Who leads the BI pack and who should we be watching out for?

Chief, Partner Solutions / Director, Client solutions

Chief, Partner Solution / Director, Client Solutions...

ASP.NET, C# Developer, .NET - MS Gold Partner - Preston

ASP.NET, C# Developer, .NET - MS Gold Partner - Preston...

SQL Server DBA - Ecommerce Brand - Southampton, Hampshire

SQL Server DBA (Database Administrator, Administration...

.NET Developer - Financial Services - Basingstoke, Hampshire

.NET Developer - Financial Services - Basingstoke, Hampshire...

Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.

To send to more than one email address, simply separate each address with a comma.