ozmanjusri's Journal: RealPlayer and Internet Explorer zero-day exploit

Hijacked advertising servers have propagated a new exploit based on RealPlayer and ActiveX, according to Symantec.

Windows users who browsed with Internet Explorer and had RealPlayer installed will have been infected if they visited sites showing ads served by internet advertising company 24/7. While the attack vector of IE/ActiveX will be familiar to all Slashdotters, this is the first time advertising servers have been hijacked to distribute the malware

The exploit allows the attachers to load the Trojan program "Zonebac" on the compromised computer.