IE Exploit

[dj_ed12 at hotmail.com (Ed Baunton)]

Has anyone actually tried the metasploit version of this yet? I ran it on IE
7 and IE 6 none of which seemed to be vulnerable using my particular
settings  - I guess people who have fairly lax security settings (ActiveX
etc) are only vulnerable? 

-----Original Message-----
From: pauldotcom-bounces at mail.pauldotcom.com
[mailto:pauldotcom-bounces at mail.pauldotcom.com] On Behalf Of Karl Schuttler
Sent: 16 December 2008 14:45
To: PaulDotCom Security Weekly Mailing List
Subject: Re: [Pauldotcom] IE Exploit

I remember hearing that the beta is...I think it was mentioned on Risky
Business.

http://isc.sans.org/diary.html?storyid=5470

"Potentially vulnerable"

On Tue, Dec 16, 2008 at 9:38 AM, Jack Daniel <jackadaniel at gmail.com> wrote:
> Has anyone heard anything definite about IE 8- vulnerable or not?
>
> Thanks
> Jack
>
>
> 2008/12/16 Ed Baunton <dj_ed12 at hotmail.com>:
> > This new exploit has had some major press this week - all versions of 
> > IE 6 and 7 are susceptible.
> >
> > http://secunia.com/advisories/33089/
> > _______________________________________________
> > Pauldotcom mailing list
> > Pauldotcom at mail.pauldotcom.com
> > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> > Main Web Site: http://pauldotcom.com
> _______________________________________________
> Pauldotcom mailing list
> Pauldotcom at mail.pauldotcom.com
> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> Main Web Site: http://pauldotcom.com
_______________________________________________
Pauldotcom mailing list
Pauldotcom at mail.pauldotcom.com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com