Zscaler Protects Against Internet Explorer Zero Day Attack
March 2010 by Zscaler
References:
CVE-2010-0806Microsoft Security Advisory (981374)
Impact : Remote code execution
Affected Software:
Microsoft Internet Explorer 6
Microsoft Internet Explorer 7
Non-Affected Software
Microsoft Internet Explorer 8
Description
Microsoft has released a security advisory (981374) detailing a new, unpatched vulnerability in Internet Explorer (IE), which is being used in targeted attacks. The vulnerability is caused by an invalid pointer reference and impacts IE 6 & 7, while IE 8 is not believed to be vulnerable.