Ravens PHP Scripts

Patch Tuesday heads-up: MS to fix *critical* IE, Office security holes
Date: Monday, December 07, 2009 @ 15:40:35 CET
Topic: Security

Posted by Ryan Naraine @ 11:45 am, 03-Dec-2009

Just two weeks after the release of exploit code for a critical (remotely exploitable) security hole in its Internet Explorer browser, Microsoft says a fix will be included in this month’s batch of Patch Tuesday updates. Microsoft has already issued an advisory to confirm the severity of the issue, which affects users of Internet Explorer 6 and Internet Explorer 7 on Windows XP, Windows Server 2003, Windows Vista, and Windows Server 2008. In all, Microsoft plans to release six security bulletins next Tuesday (December 8, 2009) to fix security flaws affected IE, Microsoft Office and the Windows operating system. Three of the six bulletins will be rated “critical,” Microsoft’s highest severity rating.  A critical vulnerability could result in remote code execution if a user opens a rigged file or simply surfs to malicious Web site.

Microsoft urged customers to pay special attention to the IE update because of the availability of public exploit code and the fact that attackers could launch malware attacks to take complete control of a Windows machine running a vulnerable browser.

Read entire article

This article comes from Ravens PHP Scripts

The URL for this story is: