Saturday, July 02, 2016
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
Panasonic DMP-UB900 Ultra HD Blu-ray Player Launches In Sepember For $699
Apple, Spotify In Music Streaming Duel
Samsung Galaxy Note7 Design Appears Online
ADATA Premier SP550 SSDs M.2 SSD Released
BMW Group, Intel and Mobileye Team Up to Bring Autonomous Driving to Streets by 2021
Nvidia Says New GeForce GTX 1060 Is Faster Than AMD's Radeon TX 480
Micron To Reduce Workforce Following Slow Third Quarter Results
Apple in Talks to Buy Tidal: Report
Active Discussions
Which of these DVD media are the best, most durable?
How to back up a PS2 DL game
Copy a protected DVD?
roxio issues with xp pro
Help make DVDInfoPro better with dvdinfomantis!!!
menu making
Optiarc AD-7260S review
cdrw trouble
 Home > News > General Computing > Microso...
Last 7 Days News : SU MO TU WE TH FR SA All News

Thursday, December 02, 2004
Microsoft releases patch to plug IE vulnerability


As expected, Microsoft Wednesday released an out-of-cycle security bulletin and patch designed to fix a critical hole in the Internet Explorer Web browser that is already being widely exploited by attackers.

The company also announced a change to Windows Update for three previously issued fixes from October for some users of Windows XP Service Pack 1.

The vulnerability addressed by Microsoft's latest bulletin, MS04-040, was first disclosed on Oct. 24 and exists in the iFrame tags of Internet Explorer. The buffer overflow flaw allows attackers to take complete control of a compromised system and can be exploited by getting users to visit Web sites where malicious code can be downloaded.

A proof-of-concept exploit named Bofra that takes advantage of the iFrame flaw has been available for several days and was used in launching attacks via banner ads last week that redirected users to rogue Web sites.

"We are aware of some proof-of-concept code and public attacks" that take advantage of the flaw, said Stephen Toulouse, security program manager at Microsoft's security response center. That's why Microsoft is urging users to apply the latest patch as soon as possible, he added.

The flaw doesn't affect users who have already installed XP SP2, he said.

Meanwhile, Microsoft today reissued three of its fixes from October for users of SP1 who may not have been offered the updates earlier. The problem involves SP1 users who may have downloaded the SP2 patch but have not installed it on their computers yet.

Microsoft's Windows Update and Automatic Updates service wouldnt have offered the October fixes automatically to such users, Toulouse said. Today's updates fixes the problem for those users.

From ComputerWorld



Previous
Next
Samsung Ascends to World's No. 2 Handset Maker        All News        Macrovision Introduces RipGuard? DVD Rip Control at the British Video Association?s I.P. Seminar
Samsung to boost chip production     General Computing News      SONY Unveils High-Capacity Network Attached Storage System at RSNA

Source Link Get RSS feed Easy Print E-Mail this Message

Related News
Microsoft Says Scorpio System will Not Offer Higher Frame Rates With Xbox One Games
LinkedIn Becomes Part Of Microsoft
Microsoft and Facebook To Link America With Europe Through 6,600 km Long Cable
Microsoft Streamlines its Smartphone Business, Axes Hundrends Of Jobs
Microsoft To Accelerate Delivery of Affordable Internet Access
Microsoft Is Selling Its Feature Phone Business to Foxconn, Nokia Mobiles Return
Microsoft Positions Windows 10 As A Platform for the Intelligence Revolution
Microsoft, Google Drop Complaints Against Each Other
Microsoft Reports Profit But Windows Business Keeps Declining
Microsoft Sues U.S. Government Over Data Requests
Microsoft's Edge Browser To Limit Flash Support
Toyota, Microsoft To Work Together On Connected Technologies

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2016 - All rights reserved -
Privacy policy - Contact Us .