This July we saw a few examples of high-profile Web sites that were compromised with malicious code. July was as a huge month for zero-day attacks and critical vulnerabilities.
There were reports of an Adobe zero-day in the wild, affecting Adobe Reader and Acrobat 9.2, as well as Flash Player 9 and 10, for Windows, Macintosh, and Linux operating systems.
Legitimate sites were compromised to lead to a zero-day exploit targeting an Internet Explorer vulnerability. The compromised sites led to a handful of payload sites hosting the exploit code, which targeted an ActiveX control for streaming video. This and other zero-day vulnerabilities in Microsoft Office Web Components caused Microsoft to issue a rare out-of-band patch.