Source -On March 9, Microsoft started investigating reports of targeted attacks using a previously undisclosed vulnerability (CVE-2010-0806) affecting Internet Explorer 6 and 7 (Internet Explorer 8, Windows 7, and Windows Server 2008 R2 are not susceptible). As a member of the Microsoft Active Protections Program (MAPP), the MMPC and other members received information about the vulnerability and immediately deployed protection for our customers. We’ve been tracking exploit attempts against this vulnerability since then, working with MSRC to monitor the state of attacks.
When proof-of-concept code became available in public exploit testing tools on March 10 and by March 12, the attack landscape escalated. Mitigating signatures providing protection for this issue are: Exploit:JS/CVE-2010-0806 and Exploit:JS/Mult.CR. These signatures protect customers through Microsoft Security Essentials, Microsoft Forefront Client Security, Windows Live OneCare, the Forefront Threat Management Gateway, and the Windows Live Safety Platform.
Microsoft Malware Protection Center : Active Exploitation of CVE-2010-0806
Active Exploitation of CVE-2010-0806.
- 30 Mar 2010 #1My System Specs
Active Exploitation of CVE-2010-0806.
Reply With Quote Active Exploitation of CVE-2010-0806. problems?
| Similar Threads | ||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Microsoft plans to release Office 2010 in June 2010 | Airbot | Vista News | 0 | 30 Nov 2009 |
| Public beta of Office 2010 and SharePoint 2010 next month. | JMH | Vista News | 0 | 19 Oct 2009 |
| Kaspersky releases IS 2010 & AV 2010. | JMH | System Security | 1 | 25 Jun 2009 |
| hanvon 0806 drawing tablet | budstundra | Vista General | 1 | 02 Feb 2008 |
| Active "sync" should be renamed Active "Stinks" | FS | Vista General | 0 | 18 Jun 2007 |
