TCH-Thomas Posted April 12, 2005 Share Posted April 12, 2005 (edited) Secunia writes about highly critical vulnerabilities in I.E Description:Some vulnerabilities has been reported in Microsoft Internet Explorer, which can be exploited by malicious people to compromise a user's system. 1) A race condition in the processing of DHTML objects can be exploited to execute arbitrary code via specially crafted HTML emails and web sites. 2) A boundary error in the handling of certain URLs can be exploited to execute arbitrary code via specially crafted HTML emails and web sites. 3) A boundary error in the handling of Content Advisor ratings can be exploited to execute arbitrary code via specially crafted Content Advisor content. Successful exploitation requires the user to accept and install the Content Advisor ratings. Solution: Apply patches. Internet Explorer 5.01 Service Pack 3 on Microsoft Windows 2000 Service Pack 3: http://www.microsoft.com/downloads/details...C0-09F413EE8EAB Internet Explorer 5.01 Service Pack 4 on Microsoft Windows 2000 Service Pack 4: http://www.microsoft.com/downloads/details...AE-169591B6AAE0 Internet Explorer 5.5 Service Pack 2 on Microsoft Windows Millennium Edition: See original advisory. Internet Explorer 6 Service Pack 1 on Microsoft Windows 2000 with Service Pack 3 or Service Pack 4, or on Microsoft Windows XP Service Pack 1: http://www.microsoft.com/downloads/details...5A-A444C51656DC Internet Explorer 6 Service Pack 1 on Microsoft Windows 98, on Microsoft Windows 98 SE, or on Microsoft Windows Millennium Edition: See original advisory. Internet Explorer 6 Service Pack 1 for Microsoft Windows XP 64-Bit Edition Service Pack 1 (Itanium): http://www.microsoft.com/downloads/details...EC-5413119D3100 Internet Explorer 6 for Microsoft Windows Server 2003: http://www.microsoft.com/downloads/details...FD-4BBD8D4D865F Internet Explorer 6 for Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows XP 64-Bit Edition Version 2003 (Itanium): http://www.microsoft.com/downloads/details...9D-FE05F966F1F4 Internet Explorer 6 for Microsoft Windows XP Service Pack 2: http://www.microsoft.com/downloads/details...58-346C317857C5 Microsoft Internet Explorer on the following platforms is not affected: * Microsoft Windows Server 2003 Service Pack 1 * Microsoft Windows Server 2003 with SP1 for Itanium-based Systems * Microsoft Windows Server 2003 x64 Edition * Microsoft Windows XP Professional x64 Edition EDIT: I messed up the links first. I hope they are correct now. Edited April 12, 2005 by TCH-Thomas Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.