Microsoft Pressured To Patch Zero Day As VUPEN Creates Serious Exploit

http://i.zdnet.com/blogs/vupen_pwn2own_2012.jpg

Microsoft is facing pressure to patch a zero-day threat that is being exploited in the wild, as vulnerability seller VUPEN has found a way to make the exploit work across all Windows platforms.

Attack code for the CVE-2012-1889 flaw, which affects Microsoft XML component found in Internet Explorer, was published earlier this month. The vulnerability could allow remote code execution if a user visits a specially-crafted webpage on Internet Explorer.

Read more: Microsoft Pressured To Patch Zero Day As VUPEN Creates Serious Exploit

Story added 21. June 2012, content source with full text you can find at link above.