Data Execution Prevention (DEP) and IE zero-day vulnerability - Security Advisory 979352 Updates

Microsoft in Advisory 979352 says that “attacks remain targeted to a very limited number of corporations and are only effective against Internet Explorer 6. We’ve not seen successful attacks on IE8 / IE7. However, earlier today, we were made aware that researchers’ve developed Proof-of-Concept (PoC) code that exploits this vulnerability on IE7 on Windows XP […]

Microsoft in Advisory 979352 says that “attacks remain targeted to a very limited number of corporations and are only effective against Internet Explorer 6. We’ve not seen successful attacks on IE8 / IE7. However, earlier today, we were made aware that researchers’ve developed Proof-of-Concept (PoC) code that exploits this vulnerability on IE7 on Windows XP and Vista. We’re actively investigating, but cannot confirm, these claims. We also published a guidance page, and a video (embedded below) about this security vulnerability:

Get Microsoft Silverlight

Jonathan Ness of SRD posted a video explaining Data Execution Prevention (DEP), offers a key mitigation against known attacks:

Get Microsoft Silverlight