Windows XP Zero-Day Targeted by Hackers in Drive-by Attack - Architecture

Visual Studio 2010!

	DevSource RSS FEEDS
	Want an easy way to keep up with breaking tech news? And the Get DevSource headlines delivered to your desktop with RSS.

DevSource.com: Your Source for Visual Studio on Facebook

Windows XP Zero-Day Targeted by Hackers in Drive-by Attack

By DevSource
2010-06-16

Article Rating:

/ 0

Rate This Article:

Add This Article To:

An engineer at Google found a vulnerability around June 10th in Windows XP and went public with the information. The bug, still yet unpatched, potentially allows a user to download and install executable code to your local PC. Sure, like every other bug. This one, however, is one that Microsoft removed the disclosure from their website…which has opened a can of worms on the disclosure debate.

Attackers have begun exploiting a zero-day vulnerability to target Windows XP machines. The vulnerability has given rise to renewed debate about responsible disclosure.

According to Sophos Senior Technology Consultant Graham Cluley, a legitimate Website pushing open-source software was seen serving the exploit to PC users. Cluley declined to name the site, but Microsoft confirmed that it was aware the bug was being exploited and said the exploits had been "taken down."

An analysis of the exploits found that Windows Server 2003 systems are not being targeted, according to an updated advisory. However, the vulnerability lies within the Windows Help and Support Center function delivered in both XP and Windows Server 2003, meaning that Windows Server 2003 systems could eventually be targeted.

To read the original eWeek article, click here: Windows XP Zero-Day Targeted by Hackers in Drive-by Attack

	Discuss Windows XP Zero-Day Targeted by Hackers in Drive-by Attack

	>>> Be the FIRST to comment on this article!



	>>> More Microsoft Architecture Articles >>> More By DevSource

Email Article To Friend ♦ Print Version Of Article ♦ PDF Version Of Article

Contact us \| Advertise \| Site Map
	Security: Enterprise Security Network Security Infrastructure Security How To: Data IT Security News Cheap Hack Blog Security Watch Blog Storage: Data Storage Cloud Storage Storage Virtualization Network Access Storage Storage Reviews Data Storage News How To: Storage Storage Station Blog Computing: Apple OSX Linux Systems Windows Vista Managed Print Services Cloud Computing PC Reviews Microsoft Watch Blog Apple Watch Blog Google Watch Blog Communications: VoIP Solutions Wireless Technology Messaging Software Web Services Mobile Applications Wireless News Mobile Reviews Apps & Development: Application Development SAAS Search Engines Database Software Web 2.0 IT Project Management Emerging Tech Blog CIO Insight Blogs CIOs
	Vertical Markets: Federal Government IT Health Care IT Finance IT Mid-Market Channel Partners Careers Blog Value Added Resellers More eWeek Links: Green Computing Center Tech Knowledge Center Tech Newsletters Tech RSS Feeds White Papers Tech Podcasts Tech Videos Magazine Subscriptions Enterprise Websites: ZDE Home Baseline Channel Insider CIO Insight eSeminars eWeek Mid-Market Publish Online Web Buyers Guide Developer Websites: Dev Shed DeveloperShed ASP Free MS DevSource SEO Chat Codewalkers Tutorialized Scripts.com Dev Mechanic Dev Articles Web Hosters Dev Hardware Technology Websites: Device Forge Desktop Linux Linux Devices Windows for Devices iGrep Search Engine PDF Zone Linux Watch TechDirect
	Use of this site is governed by our Terms of Use and Privacy Policy Copyright ©1996-2012 Ziff Davis Enterprise Holdings Inc. All Rights Reserved. eWEEK and Spencer F. Katt are trademarks of Ziff Davis Enterprise Holdings, Inc. Reproduction in whole or in part in any form or medium without express written permission of Ziff Davis Enterprise Inc. is prohibited. eWeek is your best source for the latest Technology News. ZDE Cluster 10