Thursday, March 22, 2018
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
New Samsung Exynos 7 Series 9610 Mobile Processor focuses on Multimedia
Google to Develop Its Own Blockchain-Related Technology
Zuckerberg Apologizes For Cambridge Analytica Scandal, Outlines Steps to Protect Users' Data
Mediatek Says There Are No Talks With Broadcom
Seagate Says Its MACH.2 Multi Actuator Technology Breaks Throughput Record, Announces HAMR Reliability Tests
New Apple Watch Bands Feature Spring Colors and Styles
European Commission Proposes Measures to Ensure Companies Pay Fair Tax in the EU
VIVE FOCUS Coming To International Markets Later This Year
Active Discussions
Which of these DVD media are the best, most durable?
How to back up a PS2 DL game
Copy a protected DVD?
roxio issues with xp pro
Help make DVDInfoPro better with dvdinfomantis!!!
menu making
Optiarc AD-7260S review
cdrw trouble
 Home > News > General Computing > Microso...
Last 7 Days News : SU MO TU WE TH FR SA All News

Tuesday, November 24, 2009
Microsoft Confirms Zero-Day Exploit For Internet Explorer

A new exploit targeting Internet Explorer was announced by Microsoft yesterday, and Microsoft has released an advisory with information and workarounds.

According to Microsoft's investigation so far, Internet Explorer 5.01 Service Pack 4 and Internet Explorer 8 on all supported versions of Microsoft Windows are not affected, and that Internet Explorer 6 Service Pack 1 on Microsoft Windows 2000 Service Pack 4, and Internet Explorer 6 and Internet Explorer 7 on supported editions of Windows XP, Windows Server 2003, Windows Vista, and Windows Server 2008 are affected.

The vulnerability exists as an invalid pointer reference of Internet Explorer. It is possible under certain conditions for a CSS/Style object to be accessed after the object is deleted. In a specially-crafted attack, Internet Explorer attempting to access a freed object can lead to running attacker-supplied code.

Security firm Symantec has also confirmed that it affects Internet Explorer versions 6 and 7.

"The exploit currently exhibits signs of poor reliability, but we expect that a fully-functional reliable exploit will be available in the near future. When this happens, attackers will have the ability to insert the exploit into Web sites, infecting potential visitors. For an attacker to launch a successful attack, they must lure victims to their malicious Web page or a Web site they have compromised. In both cases, the attack requires JavaScript to exploit Internet Explorer," Symantec said.

The security firm suggests Internet Explorer users to ensure their antivirus definitions are up to date, disable JavaScript and only visit Web sites they trust until fixes are available from Microsoft.

On completion of Microsoft's investigation, the conmpany may include providing a solution through its monthly security update release process, or an out-of-cycle security update.

Samsung Announces Special Prices For HDTVs        All News        Lite-On Releases New LabelTag Drive
Google Bought Display Ad Startup Teracent     General Computing News      Opera Unite Now Available in Opera 10.10

Get RSS feed Easy Print E-Mail this Message

Related News
Microsoft Previews Windows Server 2019
Microsoft Sees Cloud services As The Future of Games
Microsoft Uses AI to Match Human Performance in Translating News from Chinese to English
Microsoft Offers New Cloud Tools to Health-Care Companies
Xiaomi and Microsoft Expand Their Collaboration in cloud, Devices and AI Areas
Windows Defender ATP Coming to Windows 7 and Windows 8.1
Microsoft Reports Quarterly Revenue and Profit on Cloud and Office Consumer Products
Windows Diagnostic Data Viewer Will Show You What Data Microsoft Gets From Your PC
Microsoft Takes On Chromebooks With Education Windows 10 Devices starting at $189
Some Microsoft Meltdown Patches Freeze AMD PCs
Microsoft Plans Expansion of Redmond Campus
Microsoft Expands Deal With SAP to Use and Sell More of Each Other's Cloud Services

Most Popular News
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2018 - All rights reserved -
Privacy policy - Contact Us .