There is a new malware attack against fully patched versions of Microsoft's Internet Explorer. This zero day attack exploits a vulnerability in Internet Explorer and the way it handles the Vector Markup Languge. The exploit can be used to download malware to a victims computer.

Users should take caution to avoid being hit by this attack. This article contains more information on the exploit and how to protect yourself.

Sunbelt Software discovered a new malware attack against fully patched versions of Microsoft's Internet Explorer (IE). This new Zero Day attack is being exploited in the wild by malicious web sites. The vulnerability has to do with the way that IE handles Vector Markup Language (VML). FrSIRT (French Security Incident Response Team) has even exposed the vulnerability on a fully patched Windows XP SP2 system. There are at least three different sites that host the malicious executables.

The current malicious sites are of pornographic nature, but that does not mean that other sites with less adult-oriented content won't be created. An attacker might persuade a user to go to a malicious site using advertisements, links in an email or instant message, or links from another site that will take them to the attacker's page. Attackers can use this vulnerability to gain the same rights on a computer as the local user has. The types of attacks include crashing a browser, installing malware (such as key loggers and other spyware), and even taking complete control of a system. Therefore, users who have fewer rights on their system may be less affected than users with full administrative rights.

Microsoft is aware of this exploit and is working on a security update to patch the problem. They expect to release the update on Tuesday, October 10, 2006.

• Do not click any unexpected links in instant messages.
• Do not download attachments or click on links in an email from any unknown sources.
• Do not download unknown files or files from unknown sources.
• Enable a firewall on your system that will monitor internet activity.
• Make sure to use Windows Update frequently and get the latest security updates
• Keep your antivirus software updated and scan your computer to ensure that you are not infected.
• Disable Active Scripting in the internet and local intranet security zones.
• Turn off JavaScript in the browser.
• Avoid visiting pornographic web sites.