On TechRepublic: 12 tech terms that make you sound old
BNET Business Network:
BNET
TechRepublic
ZDNet
204 TalkBacks

By Dawn Kawamoto
Posted on ZDNet News: Apr 1, 2005 7:35:00 PM

A new set of highly critical flaws has been discovered in Microsoft's Internet Explorer and Outlook programs, according to research company eEye Digital Security.

The vulnerabilities allow for remote code execution with no actions from the computer user, eEye said. Although the flaws would not allow self-propagating worms to infiltrate a system, there is the potential of attackers installing backdoor Trojans without a person's knowledge, Ben Nagy, an eEye senior security engineer, said Friday.

"If a user is tricked (into going) to a site carrying malicious code, they can become infected by just surfing across a banner ad," Nagy said.

eEye notified Microsoft several days ago of the flaws in the default installation of Outlook and IE and is giving the software giant time to develop a patch before releasing details on which versions of the software are affected, Nagy said.

For now, only a few details are included in eEye's page of upcoming advisories.

Nagy added that eEye is also still conducting its own testing of various platforms to evaluate which ones are affected and to what degree.

No exploits are known to have been developed yet, Nagy said.

"Microsoft has acknowledged a vulnerability does exist and is real, but I doubt they will release a patch out of (their monthly) cycle," Nagy said.

Microsoft, meanwhile, said it is investigating privately reported, possible vulnerabilities in Microsoft Windows.

"At this time, Microsoft is not aware of any malicious attacks attempting to exploit the reported vulnerabilities, and there is no customer impact based on this issue," said a company spokeswoman. "Upon completion of this investigation, Microsoft will take the appropriate action to protect our customers, which may include providing a fix through a service pack, our monthly release process or an out-of-cycle security update, depending on customer needs."

SponsoredWhite Papers, Webcasts, and Downloads

  • Talkback
  • Most Recent of 204 Talkback(s)
doing the hard work for hackers...
Makes my peers & myself look lazy with a topic like that. We/I are far from it. Then you wonder
why we do what we do.

"If at first you don't succeed, you must
destroy all evidence that you tried"...?h??666?r?... (Read the rest)
Posted by: vapor13@... Posted on: 04/13/05 You are currently: a Guest | | Terms of Use
No worries, Linux users are safe from these CRITCAL FLAWS  matrixdomain | 04/01/05
Thankyou Microsoft for outstanding customer service  Squawkbox | 04/01/05
Not entirely true  rpmyers1 | 04/01/05
I might ask why?  Skyhawk_z | 04/01/05
Sleeping with the enemy, eh?  dirty_blue_jeans | 04/01/05
I don't think activex works in wine  hipparchus2000 | 04/01/05
Even for that -  klmmicro | 04/01/05
Recognizing the weakness ...  ShadeTree | 04/01/05
Sorry, hear is the proof!  ShadeTree | 04/01/05
WOW Linux can run NT kernel AND Windows Applications!  matrixdomain | 04/01/05
And just the opposite too!  Loverock Davidson | 04/01/05
wrong, this is a Linux boot from USB (or CD)  matrixdomain | 04/01/05
Wrong  Loverock Davidson | 04/01/05
Wrong again, Loverock.  The King's Servant | 04/01/05
Nice Spin!  ShadeTree | 04/01/05
credit goes to LINUX  matrixdomain | 04/01/05
The heart of the OS ...  ShadeTree | 04/02/05
Credit goes to OSS  The King's Servant | 04/01/05
The actual text paints a different picture ...  ShadeTree | 04/02/05
Any Linux will do...  nucrash | 04/03/05
re: nucrash  ShadeTree | 04/04/05
How good it is is doubtful...  thutchins | 04/01/05
Good joke ... 9.1  hipparchus2000 | 04/01/05
No what I said is exactly what they are doing.  ShadeTree | 04/01/05
Not so fast there, bucko  plawler | 04/01/05
Read between the lines!  ShadeTree | 04/02/05
April Fool  libertyaikido | 04/06/05
Why not?  lengua99 | 04/11/05
(nt) 2.0  toadlife | 04/01/05
Cave Dwellers safe from Lightning: Duh!  Neutrodyne | 04/04/05
Impatient  Roger Ramjet | 04/01/05
No they aren't  rpmyers1 | 04/01/05
Now slow down there Mr. Ramjet...  el1jones | 04/01/05
Thanks!  Roger Ramjet | 04/01/05
yeap.. that was the trigger..  el1jones | 04/01/05
Roger Microsoft should get with the program  Squawkbox | 04/01/05
Duly noted ... wanna know why, heh heh?  dalecosp | 04/01/05
I say again, why?  Skyhawk_z | 04/01/05
I totally agree  Jeff Spicoli | 04/01/05
Its called compromise  Roger Ramjet | 04/01/05
Microsoft? Compromise? BWAHAHAHAHAHA!!! 9.4!  Jeff Spicoli | 04/01/05
Pearl Harbor and other things  Roger Ramjet | 04/04/05
Roosevelt did know  lengua99 | 04/11/05
Umm, no.  dalecosp | 04/04/05
Umm, no.  dalecosp | 04/04/05
They can't  lengua99 | 04/11/05
Not MS package  thutchins | 04/01/05
I still ask why?  Skyhawk_z | 04/02/05
For Users  freefal67 | 04/03/05
Who's your enabler this week?  bjbrock | 04/01/05
Is this one of those REVERSE Aprils Fools jokes?  Xunil_Sierutuf | 04/01/05
Driveby  thutchins | 04/01/05
Critical flaws in IE and Outlook discovered  Loverock Davidson | 04/01/05
And lose-lose for the customer.  DonnieBoy | 04/01/05
You have it backwards  Loverock Davidson | 04/01/05
They ain't won nuthin' yet.  DonnieBoy | 04/01/05
its not about winning or losing  Loverock Davidson | 04/01/05
You said it was win-win, not me, and MS can fix anything it 2 hours???????  DonnieBoy | 04/01/05
It is win-win for everyone but thats not what its about  Loverock Davidson | 04/01/05
I would claim victory after computers are patched and no exploits released.  DonnieBoy | 04/01/05
Here's an Ideal!!!  support@... | 04/01/05
What it REALLY said...  thutchins | 04/01/05
The language  golowenow | 04/01/05
They point is, even a complete idiot can see that it has NOT been fixed.  DonnieBoy | 04/01/05
Yeah, just like...  Omch'Ar | 04/01/05
Critical flaws in IE and Outlook discovered  Linux_Developer | 04/01/05
HAH  Loverock Davidson | 04/01/05
iLovecock Davidson (NT)  ReFoRMaT | 04/03/05
Microsoft is concentrating on the wrong thing  Dave P. | 04/02/05
Just curious  trm1945 | 04/01/05
Excuse me but didn't Firefox just recently release security related patches  balsover | 04/01/05
Even worse than these Linux zelots..  Jazhawk | 04/01/05
RE: Even worse than these Linux zelots..  richdave | 04/02/05
Critical flaws  jakevw | 04/06/05
WinXP box directly on the internet...not smoked yet?  smoring | 04/01/05
IP address wouldn't do you any good...  ye | 04/01/05
Maybe you should reconsider.  Immanuel Tranz-Mischen | 04/01/05
Wow. That's a lot  toadlife | 04/01/05
Sure thing buddy.  toadlife | 04/01/05
Oh and by the way...  toadlife | 04/01/05
Linux enthusiasts are elite  matrixdomain | 04/01/05
Thats weird...  jason13 | 04/01/05
As a systems admin I CAN MIGRATE any system to Linux  matrixdomain | 04/01/05
matrix is the Linux version of Mike Cox  toadlife | 04/01/05
afraid your hiring manager realizes the truth?  matrixdomain | 04/01/05
sad but true  hani_y | 04/01/05
"can't work with linux"  toadlife | 04/01/05
Re: "can't work with Linux?"  matrixdomain | 04/01/05
this is stupid  adecrignis@... | 04/02/05
This is not stupid. It's true  matrixdomain | 04/02/05
Can you say "narcissist"  toadlife | 04/02/05
jealous you can't migrate systems to Linux?  matrixdomain | 04/03/05
Matrix, you are like a pull-string doll  toadlife | 04/03/05
I CAN MIGRATE YOUR COMPANY TO LINUX ,Toadlife  matrixdomain | 04/03/05
No you couldn't  toadlife | 04/03/05
Oh yes I can switch your company to Linux  matrixdomain | 04/04/05
broken record  toadlife | 04/04/05
(nt)2.0  toadlife | 04/01/05
You guys are all shortsighted...  NeverEnding | 04/01/05
Whoa there!  IT Scion | 04/01/05
EXACTLY!  golowenow | 04/01/05
Kinda short sighted on the underlining architectures  FilledOut | 04/01/05
LOL  toadlife | 04/01/05
RE: You guys are all shortsighted...  richdave | 04/02/05
...  toadlife | 04/02/05
Look at the numbers...  Dave P. | 04/02/05
Hi Dave  toadlife | 04/02/05
You don't understand M$ at all.  john.gruber@... | 04/04/05
Secure computing initiative: Open Source and Peer Review happy  kensys | 04/01/05
Not that  IT Scion | 04/01/05
Actually, just the oposite. Linux wants an open system.  DonnieBoy | 04/01/05
Really?  IT Scion | 04/01/05
Man, the patches are public. Maybe he is not jumping up and down  DonnieBoy | 04/01/05
Nice recovery Mav (nt)  IT Scion | 04/01/05
Huh???  kensys | 04/04/05
I never  IT Scion | 04/08/05
Critical flaws in IE and Outlook you say?  ttocsmij | 04/01/05
Sounds like a Yahoo promotion  golowenow | 04/01/05
Let's see ...  Henaway | 04/01/05
Are researchers doing the hard work for hackers?  NightLife6 | 04/01/05
Only for the script kiddies...  boomslang_z | 04/02/05
"eliminate in the woods" ...LOL(nt)  IT Scion | 04/02/05
When vulnerabilities are fixed in an indirect way  DRLDEV | 04/01/05
"critical flaws in IE and outlook" - this is news??  hipparchus2000 | 04/01/05
By the way, we run exim on Redhat, catches 4000 windows worms/year  hipparchus2000 | 04/01/05
Security flaws in IE and Outlook ???  realitycheck101 | 04/01/05
***sucks  jguyp725@... | 04/01/05
Obvious intelligence void  golowenow | 04/01/05
And here I was afraid...  billywill | 04/01/05
Get the best AV software now!  anthonycea | 04/01/05
AVG is rated #1, and it is free!!!  bammike | 04/01/05
Avast is MUCH better  toadlife | 04/01/05
This is not surprising as  michael-t | 04/01/05
Flaws etc.  jguyp725@... | 04/01/05
Microsoft was already aware of them  kokuryu | 04/01/05
More owwies in IE and Outlook.........  schott56@... | 04/01/05
OS Problems  clockmendergb@... | 04/01/05
Request: The Big Picture, Please  donmak0427 | 04/01/05
Look at the close up picture ....  the wolfman_z | 04/01/05
It'll be a slow roll-over to Linux, but it's gaining speed.  mad.mutt | 04/01/05
Above average and better looking?  seosamh_z | 04/02/05
He used a poor choice of words. "Experts in other areas" would be better.  DonnieBoy | 04/03/05
YES! users are not dumb, they...  Googey10 | 04/04/05
The big picture  rcasteel | 04/04/05
Thank you for the overview  donmak0427 | 04/04/05
there are reason why Linux is the better choice  matrixdomain | 04/04/05
Novell  rcasteel | 04/04/05
Linux != Unix  CobraA1 | 04/04/05
Linux ! UNIX  rcasteel | 04/04/05
Once again, dumb luck...  StanB | 04/01/05
My rep said...  Mike Cox | 04/01/05
7.5 Mike , Points off for tardiness  Squawkbox | 04/01/05
9.5  Real World | 04/03/05
reality check  pandrew3 | 04/01/05
Why I don't surf with Windows  Chad_z | 04/01/05
you are correct:businesses can't run on Windows security  matrixdomain | 04/01/05
Load of crap.  IT Scion | 04/02/05
SSH  rcasteel | 04/04/05
Windows is not THAT hard to secure  toadlife | 04/01/05
Demand better software, hound developers until they provide it...  boomslang_z | 04/02/05
disagree re "power user"  toadlife | 04/02/05
I've never gotten a virus on a Microsoft platform  George Jay | 04/04/05
Critical flaws in IE and Outlook  rgwinters | 04/02/05
Windows: The world's premier virus platform!  riff7raff | 04/02/05
Entries as supplied  FilledOut | 04/08/05
Still looking for a reason to switch to Firefox and Thunderbird? (NT)  George Jay | 04/02/05
Look here is a fairly inexpensive plan for the futue.  Laff | 04/02/05
An excellent idea with one small flaw in your plan  Squawkbox | 04/02/05
critical flaws in ie & outlook  madpoet | 04/02/05
critical flaws in ie & outlook... and petrol!  DRLDEV | 04/03/05
General purpose Vs Specific use  seosamh_z | 04/03/05
Message has been deleted.  chasmagc@... | 04/02/05
LOL  HCTiller@... | 04/03/05
Critical Flaws vs. Windows Piracy  AJJ_z | 04/02/05
Nice thought, but...  TimeBomb | 04/03/05
Months?  soulcircus | 04/03/05
I Made The Switch  nikoli | 04/03/05
RE: I made the switch  Linux User 147560 | 04/04/05
Does it really matter?  chandler3224 | 04/03/05
Finding them all together?  Whelk | 04/03/05
Use Firefox  richman555 | 04/03/05
Windows is overpriced beta test-grade software, at best.  HypnoToad | 04/04/05
Umm...no  IT Scion | 04/04/05
Extrapolation  CobraA1 | 04/04/05
More of the whole picture  10w41 | 04/04/05
IE keeps on keeping up the errors  nanaveg | 04/04/05
Shouldn't this be illegal?  Diligence | 04/06/05
Window Flaws  peterbit43 | 04/06/05
Security  cyber@... | 04/06/05
Security  cyber@... | 04/06/05
Hackers/Researchers  neilwilkes | 04/06/05
Linux/Unix safer? Get your head out of the sand!  neilwilkes | 04/06/05
If Linux contained all of Windows flaws...  lkarnis@... | 04/06/05
You seem to be implying  IT Scion | 04/06/05
Let's get real...  konkreet | 04/06/05
Even if it is as good as you say  Justcauz | 04/06/05
If M$ spent as much time fixing flaws  Justcauz | 04/06/05
Are researchers doing the work for hackers?  Google IS an offencive parasite | 04/06/05
Hackers  lwhite@... | 04/06/05
May I see your PC license, please?  johns_z | 04/06/05
Critical Flaws & The Law of Supply and Demand  feet23@... | 04/07/05
Hackers are cyber terrorists  iom88@... | 04/07/05
I WOULD love the # of Games to be played option  Bridge_SMASH | 04/08/05
doing the hard work for hackers...  vapor13@... | 04/13/05

What do you think?

advertisement
advertisement

White Papers, Webcasts, and Downloads

Enterprise Applications

  • Check out some of the easiest and most powerful ways to boost productivity while saving money on your application infrastructure. See ZDNet's comprehensive Enterprise Application resource center, now!
  • New Online Dashboard
  • Read about top issues IT decision-makers face every day, plus get cost effective solutions to real life IT problems. Oracle Topline