It is not about a movie or another one of many project on which Microsoft is currently developing them, but it is about a vulnerability recently discovered at Internet Explorer, which affects users Windows XP and Windows Server 2003.

This vulnerability, baptized "zero day”, is present at Video ActiveX Control and can be exploited after a simple visit to one infected site, allowing hackers to take over remote control of the computers from which the respective websites were accessed.

Microsoft is investigating a privately reported vulnerability in Microsoft Video ActiveX Control. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. When using Internet Explorer, code execution is remote and may not require any user intervention.

Although Microsoft announced that it managed to reduce the attacks on IE users, for almost a week hundreds of sites have been reported infected with malware that exploits the ActiveX vulnerability, and this has not been fixed yet. Moreover, it seems that it will take a few more months until Microsoft solves the problem. Until then, XP and Server 2003 users are recommended to disable Video ActiveX Control in Internet Explorer (find here com) to avoid infecting the supplied PCs. Also, Microsoft recommended to users Vista and Windows Server 2008 to take the same precautionary measures, for any eventuality.

Use: Symantec (Security Vendor) reported that only IE6 and IE7 are affected by this vulnerability, no IE8.

THE. "A zero-day (or zero-hour) attack or threat is a computer threat that tries to exploit computer application vulnerabilities which are unknown to others, undisclosed to the software vendor, or for which no security fix is available. Zero-day exploits (actual code that can use a security hole to carry out an attack) are used or shared by attackers before the software vendor knows about the vulnerability.” (Wikipedia)