Go Back   Novahq.net Forum > Computers > Hardware and Software
Reload this Page [Security] Microsoft Security Advisory (917077)
FAQ Community Calendar Today's Posts Search

Hardware and Software Discuss hardware, software and security related stuff

Reply
 
Thread Tools Search this Thread Display Modes
  #1  
Old 03-30-2006, 03:27 PM
Hellfighter is offline Hellfighter
Hellfighter's Avatar
Chief ADFP

Join Date: Jun 2002
Location: San Jose Calif 95111
Posts: 21,143

Send a message via ICQ to Hellfighter
[Security] Microsoft Security Advisory (917077)
Quote:
Microsoft Security Advisory (917077)
Vulnerability in the way HTML Objects Handle Unexpected Method Calls Could Allow Remote Code Execution
Published: March 23, 2006 | Updated: March 29, 2006

Microsoft has confirmed new public reports of a vulnerability in Microsoft Internet Explorer. Based on our investigation, this vulnerability could allow an attacker to execute arbitrary code on the user's system in the security context of the logged-on user.

Microsoft has been carefully monitoring the attempted exploitation of the vulnerability since it became public last week, through its own forensic capabilities and through partnerships within the industry and law enforcement. Although the issue is serious and malicious attacks are being attempted, Microsoft’s intelligence sources indicate that the attacks are limited in scope at this time.

The intentional use of exploit code, in any form, to cause damage to computer users is a criminal offense. Accordingly, Microsoft continues to assist law enforcement with its investigation of the attacks in this case. Customers who believe they have been attacked should contact their local FBI office or post their complaint on the Internet Fraud Complaint Center Web site. Customers outside the U.S. should contact the national law enforcement agency in their country.

Microsoft is completing development of a cumulative security update for Internet Explorer that addresses the recent “createTextRange” vulnerability. The security update is now being finalized through testing to ensure quality and application compatibility. It is on schedule to be released as part of the April security updates on April 11, 2006, or sooner as warranted.

Customers who follow the suggested actions and workarounds in this advisory are less likely to be compromised by exploitation of this vulnerability. Users should take care not to visit unfamiliar or un-trusted Web sites that could potentially host the malicious code.

read more about it follow this link: http://www.microsoft.com/technet/sec...ry/917077.mspx
there is no patches release at this time, tip they do give is keep your anti-virus and firewall you using up to date.

IE 7 beta is cover for this only. IE7: "Click-here"
__________________
* altnews sources [getmo & others news] not found main FNN: realrawnews.com
*Discord: Unknown77#7121
Playing now days: EA Games> swtor [star wars old republic]
Last edited by Hellfighter; 03-30-2006 at 03:35 PM.
Reply With Quote
Reply

« Previous Thread | Next Thread »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Microsoft Security Essentials atholon Hardware and Software 11 12-07-2009 09:23 PM
[warning] Microsoft Security Advisory (919637) "MS-Word" Hellfighter Hardware and Software 0 06-03-2006 03:12 AM
Microsoft Security Bulletin Summary for April 2006 Hellfighter Hardware and Software 7 04-18-2006 05:39 PM
[Cybra security] U.S. Department Of Homeland Security Hellfighter General Chat 1 08-01-2005 10:09 AM
Microsoft Baseline Security Analyzer V1.2 Hellfighter Tech Support 0 08-14-2004 01:01 AM


All times are GMT -5. The time now is 02:12 AM.

Novahq.net - Archive - Top



Powered by vBulletin®