Agent of Destruction

Well that didn't take long. Microsoft released its monthly security updates on September 11 - one of which fixes a critical problem in Microsoft Agent. Shortly thereafter someone unleashed a dozen lines of Javascript code that exploits the vulnerability.

If you can't install the update yet then be sure to take steps to mitigate the problem as outlined in Microsoft Security Bulletin MS07-051, which includes setting the kill bit for various ActiveX controls

Hide comments

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish