22. July 2009 18:25
A new 0-day attack has hit the web recently. The reported vulnerability is associated with Microsoft Windows TV Tuner library, 'MPEG2TuneRequest' Object and can be exploited via a malformed Web page. The attack enables remote code execution (RCE) on the targeted machine. Exploit code has already been spotted on the web.
Here is a code snippet of the 0-day exploit as detected:
Utilizing patented real-time code analysis technologies, Finjan’s unified secure web gateway blocks the 0-day attack at the gateway, as indicated by the following screenshot.
Posted by Finjan MCRC
Subscribe