Please check back here for further updates: 5/13/2013
Description
Microsoft Internet Explorer files and folders Enumeration Weaknesses:
Some weaknesses in Microsoft Internet Explorer, which can be exploited by malicious people to disclose sensitive information.
The weaknesses are caused due to MSXML returning different errors depending on whether or not a file or directory exists. This can be exploited to check the existence of files and directories.
The weaknesses are confirmed in version 10.0.9200.16540 running on a fully patched Windows 7 Professional. Other versions may also be affected.
Solution
No official solution is currently available.
***** Keep it Real, Be Safe and Alert!! *****
Internet Dangers:
1) Vobobfus.GZ Type Worm
2) Zbot Type Password Stealer
3) Kelihos.F Type Backdoor
4) Vobfus Type Worm
5) OnlineGames.AH Type Password Stealer
6) Lamechi.B Type Downloader
7) Rimecud.A Type Bot
8) Sality.AM Type Virus
9) Hotbar Type Adware
10) Sality.AT Type Virus
Malware Alerts: includes Viruses, Trojans, Rootkits, Spam bots, and other Varieties.
Active Alerts: Top Ten Spyware Threats:
Trojan.JS.Popupper.aw Trojan-Win32.Generic!BT
Adware.Win32.FunWeb.kd Trojan.Win32.Adware
Trojan-Downloader.JS.IstBar.cx Trojan.Win32.Jpgiframe (v)
Adware.Win32.FunWeb.jp Trojan.JS.Obfuscator.w (v)
Trojan-Downloader.JS.Agent.fxq Backdoor.Win32.Cycbot.cfg (v)
Exploit.HTML.CVE-2010-4452.h FraudTool.Win32.FakeRean
Adware.Win32.HotBar.dh Trojan.JS.Redirector.cd (v)
Trojan.JS.Agent.bun INF.Autorun (v)
Trojan-Downloader.JS.Iframe.cew Yontoo (v)
Exploit.JS.CVE-2010-1885.k Pinball Corporation (v)
Malware Web Vertical Encounter Rate:
1) Retail and Wholesale sites 153%
2) IT and Telecommunications 111%
3) Education 95%
4) Food and Beverage 68%
5) Government 58%
6) Health Care 58%
7) Banking and Finance 53%
Virus Information and Antivirus Software from F-Secure
