A Windows exploit for a previously undisclosed hole in Adobe’s Shockwave player has been released. The demonstration version of the the exploit merely opens the Windows calculator when a specially crafted web page is accessed. However, criminals could exploit the hole to infect a PC with malware. The exploit currently only works under Windows XP SP3 and just triggered a browser crash when tested with Windows 7 and Internet Explorer by the The H’s associates at heise Security.
Read the full story here.