|
|
 |
|
|
Pages: 1
Microsoft Releases IE Fix
(Click here to view the original thread with full colors/images)
Posted by: Ion Silverbolt
Users running anything except Windows XP SP2 should run Windows update now and grab the IE patch. More info on the vulnerability can be found here.
Microsoft published a patch for Internet Explorer on Wednesday, aiming to close a month-old hole that has been used by viruses to spread and by an ad banner attack to compromise PCs.
The vulnerability, dubbed the Internet Explorer Elements flaw by Microsoft, had previously been called the iFrame vulnerability. The issue--which does not affect Microsoft's major Windows XP security update, Service Pack 2--could allow an attacker to take control of a victim's PC, if the user is logged on as an administrator. Most home users tend to log onto Windows as administrators.
A Microsoft representative said the software giant had released the update before its next scheduled patch day, Dec. 7, because it had already been used by malicious software to compromise Windows users' PCs.
"That's one of the things that we factor in--when the customers are affected or there are active attacks," said Stephen Toulouse, security program manager at Microsoft's security response center.
Posted by: Ion Silverbolt
How nice of them. They only release the update early AFTER someone finds a way to exploit the hole.
|
|
|
|
|
