p2pnet news | security:- Microsoft Internet Explorer LinkedIn Toolbar users are being warned to immediately set the kill-bit for the affected ActiveX control following the discovery of an “extremely critical” vulnerability.

Working exploit code is publicly available, says Secunia.

“LinkedIn, the popular business-oriented social networking site, is often used by prospective employers to assess the work experience and industry networks of applicants,” says the post,

“Successful exploitation requires that the user be tricked into visiting a malicious website. The vulnerability is due to an error within the

ActiveX control when handling the ‘Search()’ method.”

The vulnerability is confirmed in version 3.0.2.1098, says Secunia, adding other versions may also be affected.

Slashdot it!

Also See:
Secunia – LinkedIn Internet Explorer Toolbar IEContextMenu ActiveX Control Code Execution, July 24, 2007

---

Use free p2pnet newsfeeds for your site. It’s really easy!Subscribe to p2pnet.net | | rss feed: http://p2pnet.net/p2p.rss | | Mobile – http://p2pnet.net/index-wml.php

---

Net access blocked by government restrictions? Use Psiphon from the Citizen Lab at the University of Toronto. Go here for details. Download here.

This entry was posted on Thursday, July 26th, 2007 at 11:36 am and is filed under Security. You can follow any responses to this entry through the RSS 2.0 feed. You can skip to the end and leave a response. Pinging is currently not allowed.

HOME

Viewed 6542 times