Windows hit by "extremely critical" 0-day vulnerability
Microsoft is warning against a new exploit in all Windows versions except Windows 2003 that is actively being exploited by attackers.
The flaw affects a part of the Microsoft XML Core Services 4.0 that is referred to as the XMLHTTP 4.0 ActiveX Control. The Core Service technology provides interoperability between applications that are based on the XML 1.0 standard and Microsoft's Jscript, VBScript and Visual Studio 6.0 programming environments.
[ Read more ]