Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: Microsoft Security Advisory (927892) SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Microsoft Security Advisory (927892)

Microsoft Security Advisory (927892)

Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution

Microsoft published an advisory yesterday regarding a vulnerability in the XMLHTTP 4.0 ActiveX Control, part of Microsoft XML Core Services 4.0 on Windows. They indicate in the advisory that they are aware of limited attacks and are investigating the reports further.

According to the advisory "
Customers who are running Windows Server 2003 and Windows Server 2003 Service Pack 1 in their default configurations, with the Enhanced Security Configuration turned on, are not affected. Customers would need to visit an attacker's Web site to be at risk."

Microsoft Security Advisory

Thanks to Edwin for providing us with this information.

Update - This is now a zero day with exploits in the wild.

FRSirt Advisory

XForce Advisory

279 Posts
ISC Handler
Nov 4th 2006

Sign Up for Free or Log In to start participating in the conversation!