There is a new vulnerability in the VML that has been tagged as being extremely critical. Now, this latest Microsoft vulnerability is apparently being actively exploited by porn sites. This latest exploit was first discovered by the folks at Sunbelt.
Sunbelt recommended that disabling Javascript may also help to mitigate the attacks.
The attack exploit a vulnerability in Internet Explorer’s Vector Markup Language(VML), a software component used to display images. It is launched when the user views a specially crafted web page encoded with the VML exploit that allows the attacker to remotely execute code without the user’s knowledge.
Or an even easier way to avoid the problem would to avoid surfing porn sites and shave those palms before ya go blind.
Oh, yeah, this particular exploit is set to be handled in the upcoming patch release October 10.
[tags]Internet Explorer, VML Vulnerability, Sunbelt, Vector Markup Microsoft[/tags]