Microsoft MHTML flaw targeted by hackers

The company has not yet issued a patch for the Mime HTML vulnerability, which was first noted by Microsoft in an advisory in January.

Microsoft has warned that hackers are targeting a zero-day flaw that affects all Windows operating systems.

The flaw, which was first highlighted by Microsoft in an advisory in January, allows an attacker to inject a client-side script into the response to a request made by Internet Explorer. The script could allow a hacker to compromise the user--by performing actions online that appear to have originated from the user; by stealing information from the user; or by otherwise trying to fool them.

The company updated its January security advisory on Friday, saying that it had seen attacks in the wild.

Read more of "Microsoft MHTML flaw targeted by hackers" at ZDNet UK.

About the author
 

Discuss Microsoft MHTML flaw targeted by hackers

Conversation powered by Livefyre

This week on CNET News
Hot Products
Trending on CNET

Tech Tip

Know how to save a wet phone?

It's not with a dryer and it's not with rice. CNET shows you the secret to saving your phone.