"The exploit is hidden in an HTML element on the front page of ASUStek's Taiwanese Web site , which then attempts to download the code from another server, according to Roger Thompson, chief technology officer with Exploit Prevention Labs Inc.

As of Friday afternoon, the server that downloaded the attack code was not operational, mitigating the risk of this attack, although attackers could easily redirect their attacks to a live server, he said"

Complete Story