There is a new exploit for the recently announced IE vulnerability. Secunia posting for the “createTextRange()” Code Execution vulnerability can be found here. Microsoft has posted a workaround for the problem with IE here And of course the US-Cert posting here. So, what’s the impact then? Well, by convincing a user to open a specially crafted web page, a remote unauthenticated attacker may be able to execute arbitrary code on a vulnerable system. Yeah, that’s bad, m’kay. Pickup Firefox today!
IE Exploit On The Loose! SANS Moves to Yellow
