Microsoft MHTML flaw targeted by hackers
The company has not yet issued a patch for the Mime HTML vulnerability, which was first noted by Microsoft in an advisory in January.
Microsoft has warned that hackers are targeting a zero-day flaw that affects all Windows operating systems.
The flaw, which was first highlighted by Microsoft in an advisory in January, allows an attacker to inject a client-side script into the response to a request made by Internet Explorer. The script could allow a hacker to compromise the user--by performing actions online that appear to have originated from the user; by stealing information from the user; or by otherwise trying to fool them.
The company updated its January security advisory on Friday, saying that it had seen attacks in the wild.
Read more of "Microsoft MHTML flaw targeted by hackers" at ZDNet UK.