[Leaplist] IE Security Hole

Hank Lambert hank at hanklambert.com
Wed Dec 17 07:37:28 EST 2008 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


This flaw is a bad one and anti-virus and anti-malware will not detect
or fix it. Microsoft is hoping to have a patch available by Wednesday
night. The vulnerability affects IE 7.0 on XP with any service pack,
Vista with any service pack, Microsoft Server 2003 and 2008, again
service packs do not help. So if you are supporting any Microsoft
servers, do not use IE to work on the machine until IE is patched. If
you use XP and are on this board, you probably already use Firefox or
Opera. Me, I'm an Opera man ;)

- --Hank


Ram K. Singh wrote:
> <!-- DIV {margin:0px;} -->
>
>
> Serious security flaw found in IE
>
>
> *Users of Microsoft's Internet Explorer are being urged by experts
> to switch to a rival until a serious security flaw has been fixed.*
>
>
> The flaw in Microsoft's Internet Explorer could allow criminals to
> take control of people's computers and steal their passwords,
> internet experts say.
>
> Microsoft urged people to be vigilant while it investigated and
> prepared an emergency patch to resolve it.
>
> Internet Explorer is used by the vast majority of the world's
> computer users.
>
>
> "Microsoft is continuing its investigation of public reports of
> attacks against a new vulnerability in Internet Explorer," said the
>  firm in a security advisory alert about the flaw.
>
> Microsoft says it has detected attacks against IE 7.0 but said the
> "underlying vulnerability" was present in all versions of the
> browser.
>
> Other browsers, such as Firefox, Opera, Chrome, Safari, are not
> vulnerable to the flaw Microsoft has identified.
>
>
> -- This message has been scanned for viruses and dangerous content
> by *MailScanner* <http://www.mailscanner.info/>, and is believed to
> be clean.
>
> ----------------------------------------------------------------------
>
>
> _______________________________________________ Leaplist mailing
> list Leaplist at leap-cf.org
> http://lists.leap-cf.org/mailman/listinfo/leaplist
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFJSPKIBEC44ZbTPXERAq1WAKCSaxb7C1IPp624PsPAQNoZx4gIVACfX9jJ
vgXT7C1P6lhN81iRFT+NSdY=
=B+FR
-----END PGP SIGNATURE-----


-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.

More information about the Leaplist mailing list