“The crash would happen without a Blue Screen of Death or other visible indication that anything was amiss,” Leyden reports.
“Proof of concept code was posted by white hat security researcher Laurent Gaffié in a blog entry on Wednesday. ‘Whatever your firewall is set to, you can get remotely smashed via IE or even via some broadcasting nbns tricks, [with] no user interaction,’ Gaffié writes,” Leyden reports.
Leyden reports, “While it might be used to knock over targeted systems, there’s no evidence that the latest flaw lends itself to code injection, a far more serious type of problem.”
Full article here.
Direct link via YouTube here.