There is security hole unearthed in Video ActiveX control that could allow an attacker to take control of a PC if the user visits a malicious Web site, according to Microsoft.

From what Microsoft Security Response Center says, there are limited attacks against a Microsoft Video ActiveX Control affecting Windows XP and Windows XP and Windows Server 2003.

Microsoft security center is aware of a code execution vulnerability within this control that can enable an attacker to run code as the logged-on user if they browse to a malicious site.

The investigation by Microsoft has shown that there are no by-design uses for this ActiveX Control in Internet Explorer which includes all of the Class Identifiers within the msvidctl.dll that hosts this ActiveX Control.

To know more on this issue from Microsoft website——– Click Here

Related posts:

1. Six Patches for Nine Vulnerabilities By Microsoft On DirectShow & Video ActiveX
2. Microsoft Has Issued A Security Patch for DirectX Vulnerability
3. Microsoft Will Release Fixes For Windows And Office
4. Microsoft: Internet Worm Attacks Windows & Malware Detection Launch by Microsoft
5. Microsoft Update Second Service Pack For Office 2008 for Mac