Welcome Guest [Log In] [Register]

Welcome to Technology Chat Corner. We hope you enjoy your visit. You're currently viewing our forum as a guest. This means you are limited to certain areas of the board and there are some features you can't use. If you join our community, you'll be able to access member-only sections, and use many member-only features such as customizing your profile, sending personal messages, and voting in polls. Plus, members will have all ads on the board removed. Registration is simple, fast, and completely free. Join our community! If you're already a member please log in to your account to access all of our features: Username:   Password: Log In

Microsoft Warns Of IE Exploit Code in the Wild
Topic Started: Nov 24 2009, 10:07 AM (21 Views)
Dark Knight	Nov 24 2009, 10:07 AM Post #1
Admin Posts: 4,395 Group: Admin Member #1 Joined: January 24, 2007	http://news.cnet.com/8301-1009_3-10403756-83.html Microsoft on Monday said it is investigating a possible vulnerability in Internet Explorer after exploit code that allegedly can be used to take control of computers, if they visit a Web site hosting the code, was posted to a security mailing list. Microsoft confirmed that the exploit code affects IE 6 and IE 7, but not IE 8, and it said it is "currently unaware of any attacks trying to use the claimed vulnerability or of customer impact," according to a statement. The exploit code was published to the BugTraq mailing list on Friday with no explanation. "The exploit targets a vulnerability in the way Internet Explorer uses Cascading Style Sheet (CSS) information. CSS is used in many Web pages to define the presentation of the sites' content," Symantec wrote in a blog post this weekend. "The exploit currently exhibits signs of poor reliability, but we expect that a fully functional, reliable exploit will be available in the near future," Symantec said. Symantec urges IE users to keep their antivirus software up-to-date, disable JavaScript, and visit only trusted Web sites, until Microsoft issues a patch for the hole. Anyone believed to have been affected can visit Microsoft's Consumer Security Support Center, report it to the Internet Crime Complaint Center, and contact the FBI or law enforcement in the particular country, Microsoft said. U.S. residents can also call Microsoft's PC Safety Customer Service and Support number at 1-866-727-2338. In July, critical holes in IE prompted Microsoft to issue a rare out-of-cycle (in other words, pre-Patch Tuesday) fix.
	I can't wait for the I'm an iPad/I'm a Maxi-Pad commercials
1 user reading this topic (1 Guest and 0 Anonymous)

« Previous Topic · Microsoft · Next Topic »

Speedy's Software Reviews     Software Review Discussion         The Fabled Lands Project     Computer and Networking Help     Linux+ Exam Technology Chat     General Technology Articles and Discussions         Microsoft         Apple         Linux     The Game Room General     The Cafe Go