• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Microsoft Internet Explorer XML Handling Remote Code Execution Vulnerability

Symantec has received reports that this issue is being actively exploited in the wild.

Exploits are publicly available. Please note that these exploits have been observed to crash vulnerable versions of Internet Explorer but Symantec has not completely verified them. Caution should be used and these exploits should only be tested in isolated environments as they may be malicious in nature.

• /data/vulnerabilities/exploits/32721.html
• /data/vulnerabilities/exploits/32721.tar.gz
• /data/vulnerabilities/exploits/32721-vista.html