2,000 sites exploiting .ANI cursor flaw

Most Popular

Downloads & Drivers

Downloads

Drivers

GMABooster 2.1a

Power Plan Assistant for Windows 7 v1.2b

Picasa 3.5.0.79.81

Adobe Shockwave Player 11.5.2.602

FileZilla 3.3.0 RC1

More Downloads

TS Community

User Gallery

Recent Discussion

TechSpot at CES 2007 by Julio	LadyDeath by mega-64
Stonehedge, England by gary_hendricks	Dogfight002 by Akio

More at the Forum

Newsletter

Our Feeds

Information Technology

2,000 sites exploiting .ANI cursor flaw

By Justin Mann, TechSpot.com
Published: April 10, 2007, 3:48 PM EST

The cursor exploit which Microsoft is having so much fun with has become much more popular among exploiters lately. According to some estimates, there are more than 2,000 sites using this exploit to one end or another. Websense, who gathered these statistics, says that these sites are either directly hosting exploit code or are redirecting to sites with the code, and that the number of infected sites has risen dramatically since the exploit was made public last month.

Microsoft did release an emergency fix, outside of their regular patch cycle. How many people are unpatched or are unable to patch? Probably a lot, especially with the number of companies that delay patching for compatibility reasons. The nature of this exploit is such that immediate patching is a good idea, especially since it requires no interaction beyond visiting a compromised site. As the article mentions, it may be a long time before we see the end of this one.

1 comment

TechSpot - PC Technology News and Analysis

Most Popular

Downloads & Drivers

TS Community

Subscribe

Information Technology

2,000 sites exploiting .ANI cursor flaw

User Comments (1)

Featured Tech Content - Inside TechSpot