I've being trying to find suitable definitions of some of the technical terminology used by various AV manufacturers in their advisories. Contrary to popular geek-belief, much of the "geek speak" used in these advisories is gibberish to the average person. I'm supposed to be an "IT geek" myself; while I get the general idea of the technical info in these advisories, the detail escapes me. Would some uber-geek out there kindly "interpret" the latest advisory from TrendLabs for me:
"is a zero-day exploit that takes advantage of a vulnerability in the createTextRange Method call process in Internet Explorer"
- What is a "call process"? Or is it a "Method call process"? If yes, what does it mean (in basic terms)
"enables a user to create a text range within an object"
- What is an "object" in this case? Also, what does this statement mean in plain english?
"This exploit causes an error in the mentioned text range, which is applied to an affected system's memory and is used to execute arbitrary codes on the system"
- In plain english, what does this actually mean (I've got the general idea, but my clients won't be able to make sense of this)
Many thanks to the person who takes the time to answer this.
P.S. I've tried doing some Googling for some answers, but gave up after wasting 30 mins with no useful result