"Attackers are exploiting the just-patched vulnerability in Internet Explorer (IE) by hiding malicious ActiveX controls in Microsoft Word documents, according to security researchers.

The rogue documents can be delivered as attachments to spam or offered up by hacked sites. Attackers have been exploiting the IE bug since at least 9 December, when reports first surfaced about malicious code found in the wild and on several Chinese hacker servers.

Since then, Microsoft acknowledged the bug, then offered up a series of advisories urging users to take protective steps until a fix was available, and on Wednesday, Microsoft released the patch.

Users must be cautious about opening Word documents, keep their security software up-to-date, and apply the IE patch as soon as possible."

http://virusbuster.hu/en/viruslab/security_news/081220_ie7flaw4

If you haven’t already patched, Now would be a good time.

Be careful out there

:)Hi Marc57,

Thanks for the infowarning!!! ;D By the way I ve read that Kiss will record a new album, excited huh ;D
http://www.livedaily.com/blog/3041.html

Thanks for posting that info, Marc.

would you know how to get the patch for ie because microsoft update doesn’t work for me, whenever i choose the option (express or custom) it gives me an error, and when i look up that error i get the page not not fund error. Also I haven’t had automatic updates in quite a while could be related…

thanks

What’s the error message ???
What’s your OS ???
The more info you supply, the easier it is for us to help.

I started a new thread for this problem

http://forum.avast.com/index.php?topic=41152.0

there is more info there

Why 2 threads on the same subject ???

my impatience and i’m slightly distracted, sorry

Go here and look for your OS and version of IE.

http://www.microsoft.com/downloads/results.aspx?DisplayLang=en&nr=20&freetext=security+update&sortCriteria=date#

I hadn’t heard about that, Thanks for the info!!!

Your Welcome.