Topic: Unpatched IE Vulnerability  (Read 2207 times)

0 Members and 1 Guest are viewing this topic.

Offline Bonk

  • Commodore
  • *
  • Posts: 13298
  • You don't have to live like a refugee.
Unpatched IE Vulnerability
« on: December 16, 2008, 10:46:54 am »
This one looks pretty significant, judging by the general rumblings around the net.

http://www.microsoft.com/technet/security/advisory/961051.mspx

http://secunia.com/advisories/33089/
http://secunia.com/blog/38/

If you are an Internet Explorer user, I strongly recommend using an alternate browser such as Opera or Firefox until this is patched.
« Last Edit: December 16, 2008, 01:00:21 pm by Bonk »

Offline Pestalence_XC

  • "The Terminator"
  • Commander
  • *
  • Posts: 2636
  • Gender: Male
  • "The Terminator" Pestalence_XC, Xenocorp
Re: Unpatched IE Vulnerability
« Reply #1 on: December 16, 2008, 12:05:13 pm »
The Vunerability shows for IE 5, 6 and 7 .. I noticed that IE 8 is not listed and I happen to be using IE 8.
"You still don't get it, do you?......That's what he does. That's all he does! You can't stop him! It can't be bargained with. It can't be reasoned with. It doesn't feel pity, or remorse, or fear. And it absolutely will not stop, ever, until you are dead!"

Member :
Xenocorp / Dynaverse.net Moderator & Beta Test Team
SFC 4 Project QA Coordinator
Taldren Beta Test Team
14 Degrees East Beta Test Team
Activision Visioneers SFC 3 Beta Test Team

Offline Bonk

  • Commodore
  • *
  • Posts: 13298
  • You don't have to live like a refugee.
Re: Unpatched IE Vulnerability
« Reply #2 on: December 16, 2008, 12:57:48 pm »
I'm not sure why Secunia does not list it in their report, but Microsoft does:

Microsoft Security Advisory (961051)

Check the following info to determine if you are affected:
Quote
Microsoft is continuing its investigation of public reports of attacks against a new vulnerability in Internet Explorer. Our investigation so far has shown that these attacks are only against Windows Internet Explorer 7 on supported editions of Windows XP Service Pack 2, Windows XP Service Pack 3, Windows Server 2003 Service Pack 1, Windows Server 2003 Service Pack 2, Windows Vista, Windows Vista Service Pack 1, and Windows Server 2008. Microsoft Internet Explorer 5.01 Service Pack 4, Microsoft Internet Explorer 6 Service Pack 1, Microsoft Internet Explorer 6, and Windows Internet Explorer 8 Beta 2 on all supported versions of Microsoft Windows are potentially vulnerable.


Offline Bonk

  • Commodore
  • *
  • Posts: 13298
  • You don't have to live like a refugee.
Re: Unpatched IE Vulnerability
« Reply #3 on: December 17, 2008, 05:48:55 am »
I hear there should be a patch out for this today.

And Guitar Hero Metallica will be out next year! Go Kirk!  :rwoot:  (radio news, sorry)

Offline Javora

  • America for Americans first.
  • Commander
  • *
  • Posts: 3002
  • Gender: Male
Re: Unpatched IE Vulnerability
« Reply #4 on: December 17, 2008, 03:58:14 pm »
Microsoft has released a patch for IE today.  It can be found at Windows update.

Offline toasty0

  • Application.Quit();
  • Captain
  • *
  • Posts: 8045
  • Gender: Male
Re: Unpatched IE Vulnerability
« Reply #5 on: December 22, 2008, 08:38:02 am »
This one looks pretty significant, judging by the general rumblings around the net.

http://www.microsoft.com/technet/security/advisory/961051.mspx

http://secunia.com/advisories/33089/
http://secunia.com/blog/38/

If you are an Internet Explorer user, I strongly recommend using an alternate browser such as Opera or Firefox until this is patched.


Fixed.
MCTS: SQL Server 2005 | MCP: Windows Server 2003 | MCTS: Microsoft Certified Technology Specialist | MCT: Microsoft Certified Trainer | MOS: Microsoft Office Specialist 2003 | VSP: VMware Sales Professional | MCTS: Vista