BetaONE will rise again!


Reply
  #1  
Old 2nd Dec 04, 10:30 PM
NewsBot's Avatar
NewsBot NewsBot is offline
Senior Member
 
Join Date: Oct 2004
Posts: 30,940
NewsBot will become famous soon enough
Internet Explorer Cumulative Update MS04-040 (KB889669)
Microsoft has issued a patch, out of its normal security patch cycle, for a critical bug in Internet Explorer versions from 6.0 up to but not including Windows XP Service Pack 2 (SP2).

According to the advisory issued by Microsoft, the bug could allow remote code execution on an affected system. The vulnerability is a buffer overflow in the handling of IFRAME and EMBED tags. By providing oversized source fields for those tags, an attacker could potentially execute arbitrary code on the user's system. The vulnerability's severity is underscored by the fact that this is only the second time that Microsoft has issued an out-of-cycle security patch since it instituted its monthly patch cycles in November 2003.

Note: Users of Windows XP SP2 and IE 5.x are NOT affected by this vulnerability.

Download: Windows ME/98
Download: Windows XP/2000/NT
View: Microsoft KB889669 Article

News source: Neowin
Full story: View Here
Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is On
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Firefox : The Guerilla Approach To Reloading The Web NewsBot NeoWin News 0 24th Nov 04 04:30 PM
Update for Internet Explorer for Windows Server 2003 NewsBot NeoWin News 0 20th Nov 04 10:00 AM
Update for Internet Explorer 6 for XP Service Pack 2 NewsBot BetaONE News 0 3rd Nov 04 12:00 PM


All times are GMT +1. The time now is 07:02 PM.


Design by Vjacheslav Trushkin for phpBBStyles.com.
Powered by vBulletin® Version 3.6.5
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.