Critical Microsoft Windows flaw
By Gina on February 1, 2011 | Vulnerabilities, Microsoft Windows vulnerability, Microsoft Windows flaw, vulnerability in MHTML, MHTML XSS vulnerability
Microsoft Windows vulnerability was discovered. This flaw may allow hackers to conduct cross-site scripting (XSS) attacks. However, vulnerability is patched and hasn’t been used by the malicious people.
Critical flaw is a result of misinterpretation of MHTML protocol handler that has influence with MIME-formatted requests for content that is designed with various blocks connected with each other through the document.
The vulnerability is exploited via IE that allows compromising HTML in a user’s browser session. Moreover, Microsoft is aware of this flaw and it has not seen any attempts in exploiting this MHTML XSS vulnerability by malicious people.
More Vulnerabilities news
Shocking: 9 out of 10 websites still vulnerable to old attacks
Did you know that less than 10% of websites are safe from attacks that have struck the internet in 2009? Back then there was a breakout of Man-in-the-middle (MITH) attacks that included an injection of a malicious code in to the browser but even after 3 years these problems are very sensitive. SSL Pulse reportIt seems that companies live in a bubble as far as IT safety is concerned. A project called SSL Pulse that is monitoring 200. Read more.- Mozilla's decision: Firefox is blocked from running unpatched Java plugins
- Facebook still is a wonderland for cybercriminals
- Microsoft talks about dangerous flaw in a Windows
- 17 high-risk flaws are fixed in Chrome; Google pays $47,500 in bug bounties
- Google bypassed Safari's No Tracking settings
- Research reveals – 4/5 of security threats come from third-party software
- Google Wallet hack revealed
- Denial-of-service flaw is fixed by Oracle
- Firefox 9.0 and four critical flaws fixed
- Major flaw of Adobe Reader and Acrobat 9.x is patched
