This section lists the latest news and blogs found via the daylife API (and for older items, the technorati API), which mention or otherwise discuss this vulnerability.
from: Microsoft Patch Watch
last 24 hours or last 7 days sorted by. Researcher upset by Windows DNS patch … MS09-002 - Cumulative Security Update for Internet Explorer (961260) MS09-0. See original discussion:Sphere | Search
from: TECHBLOG.RANDTENTERPRISES.COM
Researchers at TrendMicro have detected a targeted malware attack exploiting last week’s patched critical MS09-002 vulnerability affecting ... Micro Smart Protection Network as HTML_DLOADER.AS. HTML_DLOADER.AS exploits the CVE-2009-0075
from: Laramies Corner
Today i will do a brief post about how you can deliver an exploit URL to your target. I was reading the SANS storm post about MS09-002 XML/DOC initial infection vector ... penetration test when you need to perform a targeted client side attack, fire up Metasploit, setup MS09-002
from: Recognize-Security
[ Microsoft Internet Explorer]Here’s a proof-of-concept exploit for Microsoft Internet Explorer Object Clone Deletion Memory Corruption vulnerability in case you don’t use the Metasploit Framework and still want to test it. Like the Metasploit module I wrote for it, it has been tested successfully on Windows XP SP3,
from: Exploits and Vulnerabilities container
# # Author : Ahmed Obied (ahmed.obied@gmail.com) # # - Based on the code found by str0ke in the wild for MS09-002 # - Tested using Internet Explorer 7.0.5730.11 on Windows XP SP2 # # Usage
from: Simon's Space
In BigPond’s March 2009 newsletter, Ponderings, was this little piece: AUTO UPDATES EAT USAGE The ‘Auto Update’ function in a lot of software, ... of just 1 update. MS09-002 – addresses a vulnerability in Microsoft Internet Explorer (KB 961260) Let’
from: Wireless hack,Wifi hack & security
Lol in my last video i showed how to use MS09-002 exploit ,but in that there was a problem where the Vulnerable URL should be Opened by the enduser but how to do without sending links to them
from: Shoaib Yousuf
MS09-002 Exploit in the wild uses MSWord Lure An exploit found to be targeting a recently patched vulnerability for Internet Explorer 7 was ... the MS09-002 exploit . Malware authors are always working to create new and improved ways to evade ... to the malicious website to launch and execute the MS09-002 exploit . For those
from: The Laws of Vulnerabilities
The browser is the most popular used application to access the Internet ... of their public release (see MS09-002). ms09_002.png We believe that IE patches are well
from: ThreatFire Research Blog
The IE7 vulnerability recently patched by Microsoft's MS09-002 is being exploited in the wild. The ThreatFire community is not seeing much of the attack, but ThreatFire prevents attacks against the memory corruption (referenced in CVE-2009-0075) in Internet Explorer 7's loaded mshtml.dll
from: CyberInsecure.com
Researchers at TrendMicro have detected a targeted malware attack exploiting last week’s patched critical MS09-002 vulnerability affecting Internet ... as HTML_DLOADER.AS.HTML_DLOADER.AS exploits the CVE-2009-0075 vulnerability, which is already
from: .::anti-abuse.com::.
Iain Thomson in San Francisco, vnunet.com , Wednesday 18 February 2009 at 02:11: ... exploits in the wild. We can confirm this – the exploit for the CVE-2009-0075 vulnerability (Uninitialized
from: Tech-Linkblog.com
It looks like IE7 patches are being used right now in the wild. According to TrendMicro : HTML_DLOADER.AS exploits the CVE-2009-0075 vulnerability , which is already addressed by the MS09-002 security patch released last week. On an unpatched system though, successful exploitation by HTML_DLOADER.AS
from: Jeff Jones Security Blog
Summaries from previous months: Jan09 Security Bulletin SDL Benefit Summary When I do analysis and reports on ... Benefit Comment Non-Windows Product CVE-2009-0075 C-NA
from: Technical Support News
US-CERT, the government’s cyber security arm, is warning users of Microsoft Internet Explorer 7 about a Trend Micro report claiming that ... Security Bulletin MS09-002 to be “critical” and gave the vulnerability a score ... an ActiveX control that reaches out to a malicious site that exploits the vulnerability patched by MS09-002
from: Graham Cluley's blog
Have you patched Internet Explorer 7 yet? We're seeing evidence of a vulnerability in Internet Explorer 7 being exploited in the wild. The vulnerability (known as MS09-002) allows malicious webpages to run code on your computer which could, of course, infect your PC, commandeer your computer to be part of a botnet, or steal
from: The Small Big Thing From Tech
Researchers at TrendMicro have detected a targeted malware attack exploiting last week’s patched critical MS09-002 vulnerability affecting ... Protection Network as HTML_DLOADER.AS. HTML_DLOADER.AS exploits the CVE-2009-0075 vulnerability, which
from: Blogs - MSMVPS.COM
[MS Security Bulletin] Minor Revisions Issued: February 16, 2009 Summary ======= The following bulletins have undergone a minor revision increment. Please see the appropriate bulletin for more details. * MS09-002 – Critical Bulletin Information: ============== * MS09-002 - Critical - http://www.microsoft... Posted to Cliff Hobbs
from: Cliff Hobbs at myITforum.com
Summary ======= The following bulletins have undergone a minor revision increment. Please see the appropriate bulletin for more details. * MS09-002 – Critical Bulletin Information: ============== * MS09-002 - Critical - http://www.microsoft.com/technet/security/bulletin/ms09-002.mspx - Reason for Revision: V1.1 (February 16
from: Doing Time
We interrupt our regularly scheduled Valentine's Day Spam Countdown for an important message about Microsoft Black Tuesday ... -up patch. This one is MS09-002 and has two new ways for website authors to add code to their web
from: Microsoft Patch Watch
[crosspost to Windows Update newsgroup] Error message after you install a Windows Internet Explorer 7 update from Windows Update or from Microsoft ... Update: “Webpage cannot be displayed”: link If tweaking your third-party firewall’s settings don’t help, try the following:Go here to read the rest:Re: MS09-002 Problems
from: http://f-secure.com/weblog
MS09-002/MS09-004, Consistent Exploit Code Likely Posted by Sean @ 12: ... Assessments of 1 — Consistent exploit code likely. First there's MS09-002 which addresses two vulnerabilities in Internet Explorer 7. MS09-002 And then there is MS09-004 which patches a vulnerability
from: Microsoft Patch Watch
This update addresses the vulnerability discussed in Microsoft Security Bulletin MS09-002. To find out if other security updates are available for you, see the Additional Information section
