Zero Day Vulnerability Found in Windows 7
Proof-of-concept code was recently published on Twitter.
A critical zero day security flaw has been found in Windows 7, and proof-of-concept code has been made available online.
"Danish vulnerability clearinghouse Secunia said the memory corruption vulnerability could be exploited by attackers remotely," SearchSecurity.com reports. "In a security advisory issued late Monday to customers, Secunia said the vulnerability works by viewing a malicious webpage containing an iFrame with an overly large 'height' attribute."
"Proof-of-concept code was published on Twitter by the discoverer of the Windows 7 vulnerability," the article states.
Go to "Critical Windows 7 zero-day vulnerability could lead to iFrame attacks" to read the details.
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.