Main Area and Open Discussion > General Software Discussion

Patch for new Internet Explorer Exploit - updated 9/27/06

(1/2) > >>

mouser:
A group of security researchers on Friday posted an unsanctioned patch for the Internet Explorer VML bug, putting more pressure on Microsoft to push its own fix to users before its next scheduled update on Oct. 10.
...
Eric Sites, vice president of research and development at Sunbelt Software, which first reported the vulnerability and exploit earlier this week, also said that attacks were "definitely escalating." In a conversation with a tier 1 support representative at Cox Cable on Friday, Sites said, he was told that the cable operator had several thousand support calls and e-mails backed up, with users reporting a wide variety of complaints, including IE crashes. "That may be a targeted attack," said Sites.

--- End quote ---


http://www.techweb.com/wire/security/193004876





more info on the exploit itself: http://www.techweb.com/wire/security/193003570

mouser:
new official patch from microsoft:


Microsoft released a patch for the zero-day VML (Vector Markup Language) security hole yesterday, instead of waiting for October's "patch Tuesday". If you have Windows with updates set to automatic, you probably already have it. If not, see: Microsoft security updates for September 2006

--- End quote ---


http://blogs.guardian.co.uk/askjack/2006/09/microsoft_releases_vml_patch_f.html




direct link:
http://www.microsoft.com/athome/security/update/bulletins/200609.mspx

Terry:
You may test whether your Internet Explorer is vulnerable:
http://www.isotf.org/zert/testvml.htm

alxwz:
You may test whether your Internet Explorer is vulnerable:
http://www.isotf.org/zert/testvml.htm
-Terry (September 29, 2006, 02:15 PM)
--- End quote ---

The site (this particular page, that is) seems to be down/link dead. (?)

Terry:
Hi, I have just tested it, it is working. Maybe your antivirus blocking it?

Navigation

[0] Message Index

[#] Next page