http://www.frsirt.com/exploits/20050817 ... l-0day.php (http://www.frsirt.com/exploits/20050817.IE-Msddsdll-0day.php)

http://www.9down.com/modules.php?name=N ... e&sid=5400 (http://www.9down.com/modules.php?name=News&file=article&sid=5400)

Does not even have a windows update patch...
Sigh...
Is it so hard to program a html browser ?
20 years passed and it still has new bugs and exploits.
Bloody MS.

A solution has just published by illmob...
http://illmob.org/0day/msdds.dll_deactivator.rar

MS said:

"Microsoft is concerned that this new report of a vulnerability in Internet
Explorer was not disclosed responsibly, potentially putting computer users
at risk. We continue to encourage responsible disclosure of vulnerabilities.
We believe the commonly accepted practice of reporting vulnerabilities
directly to a vendor serves everyone's best interests. This practice helps
to ensure that customers receive comprehensive, high-quality updates for
security vulnerabilities without exposure to malicious attackers while the
update is being developed."

http://www.microsoft.com/technet/securi ... 06267.mspx (http://www.microsoft.com/technet/security/advisory/906267.mspx)

btw nice lookup for


A solution has just published by illmob...
http://illmob.org/0day/msdds.dll_deactivator.rar


Will mirror it to countermeasures, you are also welcome to post in the other sections dude.