Monday, January 16, 2017
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
Intel Unveils New Intel Responsive Retail Platform, Announces $100 Million Investment Plan
Raspberry Compute Module 3 Launched
SpaceX Sends Satellites into Orbit
LG Touts Safety Features OF G6 Smartphone
Nintendo Switch Coming In March For $299
YouTube Super Chat Lets You Pay to Pin comments On Live Streams
Samsung Adds New Capabilities And Categories To Their Mobile Alliance Program
Your Next Smartphone Could Use Carbon-based NRAM Memory, Says Report
Active Discussions
Which of these DVD media are the best, most durable?
How to back up a PS2 DL game
Copy a protected DVD?
roxio issues with xp pro
Help make DVDInfoPro better with dvdinfomantis!!!
menu making
Optiarc AD-7260S review
cdrw trouble
 Home > News > General Computing > New bug...
Last 7 Days News : SU MO TU WE TH FR SA All News

Saturday, April 02, 2005
New bugs found in Outlook, IE


Microsoft Corp. is investigating a new set of potentially serious security flaws in Internet Explorer and Outlook reported by security company eEye Digital Security Inc., the software maker said Friday.

The two flaws in the Web browser and e-mail client could let an attacker take control over a system with minimal action from the user, eEye said in two security alerts posted on its page of upcoming advisories. The company ranks the flaws "high" risk.

One of the vulnerabilities could let an attacker compromise a user's machine after the user clicks on a Web link, said Marc Maiffret, co-founder and chief hacking officer at eEye. "Nothing that would be normally suspicious to the user," he said. The flaws affect both Outlook and Outlook Express, according to Maiffret.

The flaws exist in the default installations of the applications on most current versions of Windows, according to eEye of Aliso Viejo, California. The company has informed Microsoft and will not provide further details until Microsoft has provided a patch or security alert, it said on its Web site.

"We keep all the details private until Microsoft produces a patch. But that is not to say that nobody else has discovered the vulnerability and produced an exploit," Maiffret said. However, eEye has not seen any attacks that take advantage of the flaws yet, he said.

Microsoft is investigating the privately reported possible vulnerabilities, a spokeswoman for the Redmond, Washington, software maker said. The company is not aware of any attempts to exploit the vulnerabilities, she said.

Upon the completion of the investigation, Microsoft will take the appropriate action to protect users. That could be a fix as part of the company's monthly patching cycle, a fix in the next service pack or a special update, the spokeswoman said.

EEye reported the flaws to Microsoft on March 16 and March 29, according to the eEye Web site. Maiffret hopes Microsoft will produce a patch within two months, the industry standard time for delivering a fix, he said.


Previous
Next
World's Best CeBIT 2005 Live Coverage by CDRinfo.com (Updated)        All News        Yahoo hires gen. manager of MSN's programming group
Hitachi claims leap in drive density     General Computing News      Yahoo hires gen. manager of MSN's programming group

Get RSS feed Easy Print E-Mail this Message

Related News
Microsoft, NXP Semiconductors, IAV and Auto Mobility Partners showcase Technologies For Safe And Personalized Automated Friving at CES 2017
Microsoft Partners with TomTom Mapping Company On Azure
European Commission Approves Acquisition of LinkedIn by Microsoft, Subject to Conditions
Microsoft Is Careful With New Chatbot Zo, Now Available For Testing
Microsoft Offers Grants to Organizations Working to Improve Affordable Internet Access
Microsoft Wants To Bring Something Different in The Smartphone Market
Microsoft's Solitaire Game Now Available On iOS And Android
Microsoft Joins The Linux Foundation, Google Embraces The .NET community
Microsoft Buys 237 Additional Megawatts of Wind Energy
Microsoft Introduces Chat-based Workspace in Office 365
Microsoft Identifies Russia-linked Hackers Exploiting Windows Flaw
Microsoft Researchers Reach Human Parity in Conversational Speech Recognition

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2017 - All rights reserved -
Privacy policy - Contact Us .