An extremely critical vulnerability has been reported in Microsoft Internet Explorer, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to a use-after-free error when handling "" arrays and can be exploited via a specially crafted web page.
Successful exploitation allows execution of arbitrary code.
NOTE: This is currently being actively exploited.
The vulnerability is reported [in Internet Explorer 7 and 8] on a fully patched Windows XP SP3. Other versions may also be affected.
Solution
No official solution is currently available.
Provided and/or discovered by
Reported as a 0-day.
http://secunia.com/advisories/50626/
The vulnerability is caused due to a use-after-free error when handling "" arrays and can be exploited via a specially crafted web page.
Successful exploitation allows execution of arbitrary code.
NOTE: This is currently being actively exploited.
The vulnerability is reported [in Internet Explorer 7 and 8] on a fully patched Windows XP SP3. Other versions may also be affected.
Solution
No official solution is currently available.
Provided and/or discovered by
Reported as a 0-day.
http://secunia.com/advisories/50626/