Microsoft Internet Explorer XP SP2 Fully Automated Remote Compromise
Although hundreds of millions of dollars have been spent on securing SP2, perfection is impossible. Through the joint effort of Michael Evanchik and Paul from Greyhats Security, a very critical vulnerability has been developed that can compromise a user’s system without the need for user interaction besides visiting the malicious page. The vulnerability is not actually a vulnerability in itself, but rather it is uses multiple known holes in SP2 including Help ActiveX Control Related Topics Zone Security Bypass Vulnerability and Help ActiveX Control Related Topics Cross Site Scripting Vulnerability. Vulnerable Systems: * Microsoft Internet Explorer 6.0 * Microsoft Windows XP Pro … Continue reading Microsoft Internet Explorer XP SP2 Fully Automated Remote Compromise