Home » Defense in Depth

Targeted Attacks Use MHTML Exploit

Posted 13 Mar 2011 | Comments Off on Targeted Attacks Use MHTML Exploit | 1,740 views

A post on the Google security blog has stated that the MHTML vulnerability is being actively exploited. The MHTML protocol, which is unique to Internet Explorer, allow  the browser to download multiple files in a single MIME encapsulated file. As a workaround, Microsoft has released to Fixit wizards to enable and disable the MHTML protocol. The protocol should remain disabled, and it should only be reactivated when absolute necessary. Microsoft has acknowledged that this is only a workaround and not a permanent solution.

Comments are closed.