http://angelsofsecurity.com/blog Musings of an infosec renegade Tue, 02 Aug 2011 19:01:53 +0000 en hourly 1 http://wordpress.org/?v=3.2.1 http://angelsofsecurity.com/blog/2009/02/17/ms09-002-reverse-engineered/ http://angelsofsecurity.com/blog/2009/02/17/ms09-002-reverse-engineered/#comments Tue, 17 Feb 2009 20:42:34 +0000 admin http://angelsofsecurity.com/blog/2009/02/17/ms09-002-reverse-engineered/ ISC is reporting that they’re seeing exploits of MS09-002 in the wild. MS09-002 is an exploit which allows for remote code execution on IE7. The vulnerability was first reported to MS in October of 2007 by the Zero Day Initiative. Microsoft issued the patch a week ago. Given this, ISC is also claiming that it is likely that the patch was reverse engineered to find the vulnerability, and I would have to agree. I’m sure the anti-disclosure crowd will be using this one as proof positive for their position in the future.

]]> http://angelsofsecurity.com/blog/2009/02/17/ms09-002-reverse-engineered/feed/ 0