An exploit for Internet Explorer was published online yesterday, showing
signs of poor reliability. Symantec confirmed that the exploit affects Internet
Explorer 6 and 7. Experts believe a fully functional version of the exploit will
be made available in the coming weeks.
The exploit requires the hacker to lure the victim onto a malicious website
or a compromised webpage. Whatever method is used, the attack requires
javascript on Internet Explorer. Symantec found the vulnerability in Microsoft
Data Access Components, which could allow a Remote Code Execution on a user's
system.
