Monday, March 30, 2015
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
Google Now Offers A Gmail For Android Users
Jay-Z Challenges Launches Updated Tidal Music Service
Apple Offers Trade-in Program For Android, Blackberry And Windows Phones
Kingston Releases New USB 3,0 Media Reader
Amazon Starts Offering Home Services
Alibaba Signs Deal With BMG
GIGABYTE Releases ARM Server Solutions
ASUS Transformer Book Chi Available for Preorders
Active Discussions
how to copy and move data files to dvd-rw
cdrw trouble
Need serious help!!!!
burning
nvidia 6200 review
Hello
Burning Multimedia in track 0
I'm lazy. Please help.
 Home > News > General Computing > Microso...
Last 7 Days News : SU MO TU WE TH FR SA All News

Thursday, March 23, 2006
Microsoft Plans IE Update


Following the recent discovery of two unpatched Internet Explorer vulnerabilities, Microsoft is planning an upgrade of its browser upgrade, according to Pc World.

"We're working on an update to Internet Explorer and that update is currently in our testing process and could come out as early as April," said Stephen Toulouse, a security program manager with Microsoft's security response center. "However there's no firm date."

The most severe bug, discovered arlier this month by Web developer Jeffrey van der Stad. It could possibly allow attackers to seize control of a victim's PC. Van der Stad claims to have discovered way for attackers to trick Internet Explorer into executing HTA (HTML application) files without the user's permission. HTA is a Microsoft-created format that is used to create HTML-based applications.

Victims could have their systems compromised by visiting a Web site that contained the malicious code, van der Stad said. "With a specially designed Web site, it is possible to execute such a file without any prompt," he said. He has not published technical details of his bug, but Microsoft has been able to reproduce the problem and is hoping to have it patched in its next IE release, he said.

Toulouse would not comment on whether Microsoft considered the bug to be severe, saying that this information would "put customers at risk by providing attackers [with] information before the update is available."He also did not say whether he expected this problem to be patched during the company's next group of security updates, scheduled for April 11.

However, Microsoft has confirmed that it is investigating a separate IE vulnerability that could cause its browser to crash. Code that takes advantage of this vulnerability has already been published on the Internet. But because the bug does not appear to cause anything worse than a browser crash, it is not considered to be critical, according to security vendors. Microsoft has also confirmed that this bug can crash IE, in a note published Tuesday.


Previous
Next
Yahoo Launches U.S. VoIP Service        All News        ASUS and AGEIA Co-develop PhysX Processor
Yahoo Launches U.S. VoIP Service     General Computing News      Microsoft To Offer Technical Support to Licensees

Get RSS feed Easy Print E-Mail this Message

Related News
Data Requests To Microsoft Decreased
Samsung to Bring Microsoft Services on More Devices
Microsoft Collaborates With Ford On Conected Cars
Microsoft Releases New Business Products
Microsoft To Offer Cortana To Android, iOS
Microsoft Proposes New Power Backup Specification
MWC: Microsoft Unveils The Lumia 640 and Lumia 640 XL
Microsoft Band Gets New Features
Internet Explorer To Support HTTP Strict Transport Security Protocol
Microsoft Buys Sunrise In A Smartphone Push
Microsoft, Samsung Settle Patent Dispute
Bill Gates Sees Future In Robots

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2015 - All rights reserved -
Privacy policy - Contact Us .