New Internet Explorer zero-day vulnerabilities are currently being exploited in the wild in Watering Hole Attack, infects the visitors of malicious websites with malware, Security researchers at FireEye Labs warn.
One of the vulnerability is an Information leakage that affects windows IE8 in Windows XP and IE9 in windows 7. The exploit sends timestamp retrieved from the PE headers of msvcrt.dll" which is being used for choosing exploit.
The second one is memory access vulnerability designed to work on IE 7 and 8 in Windows XP, and Windows 7. The researchers also discovered the vulnerability affects IE 7,8, 9 and 10.
After successful exploitation, he shellcode used in the exploit launches rundll3d.exe and inject malicious code. The malicious code then downloads and runs malware file from attacker's server.