Exploit against MS07-033 being used in the wild

The Symantec folks identified a website exploiting a bug from this months Microsoft patches, specifically the Microsoft Internet Explorer Speech API 4 COM Object Instantiation Buffer Overflow Vulnerability.  Here is the URL to their blog entry:


Apparently, the actual exploit is similar to the proof of concept code posted on a popular exploit site ten days ago.


112 Posts
Jun 23rd 2007

Sign Up for Free or Log In to start participating in the conversation!