The attack code is targeting the new IE vulnerability

Experts warning the attack source can be used to hijack the Windows operating system, through an unpatched Internet Explorer vulnerability discovered and posted to the Net near.

The attack code is posted on a public website, accessible to everyone. These guys don't miss this occasion, use them for phishing attacks. Microsoft is investigating this issue - a company representative said in an interview on Thursday.

' According to Microsoft's initial investigation, these destructive codes could allow an attacker to interrupt memory. One solution offered against potential attacks is that Windows users should remove ActiveX and other active scripting controls . '

Picture 1 of The attack code is targeting the new IE vulnerability

According to Symantec's warning sent to users of Smart Security service DeepSight, this vulnerability is caused by an error in ActiveX controls related to multimedia components. It can be exploited when you visit a phishing site. An attacker can requisition an operating system or destroy IE.

Versions of IE 5.01 or 6.0 on all current Windows operating systems are affected - FrSIRT (French Security Incident Response Team) a security monitoring company said in a warning Wednesday. FrSIRT believes that this issue is 'critical', considered to be the most serious. Microsoft also noted that Windows 2000 is using Enhanced Security Configurations unaffected.

Based on the initial investigation, Microsoft may provide a patch as part of its monthly release program. Microsoft will not care about any attacks that try to exploit the new IE vulnerability at this time.

The new vulnerability warning came just a day after Microsoft released September patches. Tuesday released three updates, two for Windows and one for Office. Software makers also launched a third Internet Explorer fix after patching up the first two versions.

In recent months, the slogan of the new attacks has been ' repeated several times quickly after' Tuesday's patch . ' Many experts believe the timing of the new attack is not accidental. Attackers will take advantage of the entire month before Microsoft plans to release subsequent fixes.