All the latest UK technology news, reviews and analysis

Microsoft investigating new zero-day exploit

by Dave Neal

More from this author

01 Mar 2010

Be the first to comment

  • Tweet this
Internet Explorer
Microsoft has warned of a new Internet Explorer flaw

Microsoft has reacted quickly to a new vulnerability in Internet Explorer which could allow remote code execution.

Jerry Bryant, senior security communications manager at Microsoft, said in a blog post yesterday that the issue, which was posted at the end of last week, had no obvious exploits but could pose some problems.

Further reading

"An issue was posted publicly that could allow an attacker to host a maliciously crafted web page and run arbitrary code if they could convince a user to visit the web page and then get them to press the F1 key in response to a pop-up dialogue box," he said.

"We are not aware of any attacks seeking to exploit this issue at this time, and in the current state of our investigation we have determined that users running Windows 7, Windows Server 2008 R2, Windows Server 2008 and Windows Vista are not affected."

The issue concerns Windows Help files and VBScript, file types designed to invoke automatic actions during normal use.

"While they can be very valuable productivity tools, they can also be used by attackers to try and compromise a system," said Bryant.

Microsoft urged users to ensure that their security software is up to date and that they have a firewall in place.

Do you agree?

Add your comment
 

Add your comment

We won't publish your address
By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.
Submit your comment

Latest stories from Security

computer security

FireEye warns 95 per cent of firms unable to defend against malware onslaught

Related white papers

Related articles

Related jobs

Today's top stories

ACTA protests took place across the globe

EP president condemns ACTA treaty as citizens protest across the globe

Google logo

Security patches cost Google $410,000 in finder's fees

Apple iPhone 4S

Apple stocks pass $500 as firm's financial success continues

Poll

IT priorities for 2012

What is the most important IT priority for your company this year?

99%

0%

1%

0%

0%

Features

V3 and The INQUIRER editor Madeline Bennett

BBC and Sky News show tough love with Twitter policies

V3's Rosalie Marshall

World indulges in a Facebook facts fest as firm prepares to float

facebook-new

Top five most interesting figures from Facebook’s IPO

Khidr headshot

Intel will prove Steve Jobs wrong in the mobile market

More features

Connect with V3.co.uk

Sign up to our daily or weekly newsletters

Case studies and reports

Accurev

Top 5 software development challenges

This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes

Talend

Rubbish in, rubbish enterprise

Why good data management at all levels is essential in the modern business (video, 6mins)

Technology jobs

Compliance Business Analyst

Compliance Business Analyst (AML / Equity / Market Abuse...

VB6 & Oracle PL/SQL Developer / Software Engineer VB 6.0 PL/SQL

VB6 & Oracle PL/SQL Developer / Software Engineer...

.NET Developer/ EPI Server

URGENT .Net Developer/ EPI Server - London based - £300...

Java Web Developer

Java Web Developer - London - up to £43k An exciting...

To send to more than one email address, simply separate each address with a comma.