Microsoft patches IE6 zero-day public exploit code

Microsoft confirmed of releasing an security update out-of-band to help protect customers from zero-day vulnerability of Internet Explorer 6, that targeted Google and other corporte networks. “Given the significant level of attention this issue has generated, confusion about what customers can do to protect themselves and the escalating threat environment Microsoft will release a security […]

Microsoft confirmed of releasing an security update out-of-band to help protect customers from zero-day vulnerability of Internet Explorer 6, that targeted Google and other corporte networks. “Given the significant level of attention this issue has generated, confusion about what customers can do to protect themselves and the escalating threat environment Microsoft will release a security update out-of-band for this vulnerability. We take the decision to go out-of-band very seriously given the impact to customers, but we believe releasing an update out-of-band update is the right decision at this time. We’ll provide the specific timing of the release tomorrow,” MSRC via Advisory 979352. Note: We'll update this post once the patch is released.

Here’s a video showing Metasploit exploit in action: