Blog: New Zero-Day Vulnerability Shares Links To Hidden Lynx

On November 11, Microsoft published a Blog Post about a new Zero-Day Microsoft Internet Explorer Un-Specified Information Dis-Closure Vulnerability (C.V.E.-2013-3918) affecting an Internet Explorer Active X Control, that had been publically disclosed on November 08. The blog states that this Vulnerability is scheduled to be addressed in “Bulletin 3”, which will be released as M.S.13-090 today[Tuesday, November 12, 2013] through Windows Update at approximately 10:00A.M. P.D.T.. As Symantec is part of the Microsoft Active Protections Program (M.A.P.P.), we are aware of this vulnerability and have the following protection in place for our customers:

 

- Blog: New Zero-Day Vulnerability Shares Links To Hidden Lynx