Since the 30th of May 2012 hackers were abusing the Microsoft XML core services vulnerability (CVE-2012-1889). The 10th of July 2012 Microsoft finally published a security advisory which fixes this issue.
Brian Mariani and Frédéric Bourla from High-Tech Bridge (Geneva, Switzerland) have published a publication that explains the details about this fix. As a test workplace used Windows XP SP3 and Internet Explorer 6.0.
Direct link to original PDF: CVE-2012-1889: Security Update Analysis.
Also demonstration video is available for this publication: CVE-2012-1889: Security Update Analysis.
No comments:
Post a Comment