Danger! Unpatched Microsoft security vulnerability being actively exploited

[Jack]

An unpatched critical security vulnerability in Microsoft's software is being actively exploited by cybercriminals.

The exploit allows what's known as a drive-by install: you can become infected simply by visiting a website with Internet Explorer.

Alongside last week's regular Patch Tuesday announcement (including a remote code execution vulnerability that is being exploited by attackers in the wild), Microsoft also issued an out-of-band security advisory about an as-yet unpatched security hole (known as CVE-2012-1889).

Read more: http://nakedsecurity.sophos.com/2012/06/19/unpatched-microsoft-security-vulnerability-exploited/

 

[MrXidus]

Cheers, I applied the Fix against this.

 

[Plexx]

Will update later on when I get home.
Thanks for sharing

 

[ZeroDay]

Thanks for this.

 

[McLovin]

Thanks for the heads up Jack.
Doing that fix right now.

 

[ranget]

why this is so funny ?

i'm planing on going to hac.. sorry Macintosh

 

[Ink]

Thanks for the heads up, I'll wait for a Windows Update (whenever that may be).

 

[ranget]

why they didn't released the update yet ?

 

[malwarekiller]

why they didn't released the update yet ?

same here..cannot find anything in windows updates..may be i will wait for official security update..

 

[Ink]

why they didn't released the update yet ?

Because there is no patch for it yet, however they have released a Fix it solution.

No patch, no Windows Update for the wider audience.

 

[Tom172]

why they didn't released the update yet ?

Windows Updates need to be tested extensively before being rolled out.

 

[Raul90]

THANKS FOR THIS POST!

 

[LochNess]

Jack... Thanks for 'Heads-Up'...

 

[Gnosis]

Great heads-up, but Microsoft is usually 30-60 days late with patches, so we can only control so much on our end.