On The Insider: Britney's Bikini-Clad Top 10
BNET Business Network:
BNET
TechRepublic
ZDNet
150 TalkBacks

By Dawn Kawamoto
Posted on ZDNet News: Jul 1, 2005 3:55:00 PM

Microsoft has issued a security advisory for Internet Explorer, after a research firm published a working exploit to demonstrate how attackers could take advantage of the flaw.

The vulnerability, discovered by SEC Consult, mean that attackers could cause the browser to unexpectedly exit and execute arbitrary code. Versions of IE affected by the flaw include IE 6.0 on Windows 2000 with Service Pack 1, 3 and 4, and on Windows XP with Service Pack 1 and 2.

"Microsoft is investigating a new public report of a vulnerability affecting Internet Explorer. We have not been made aware of any attacks attempting to use the reported vulnerability or customer impact at this time," Microsoft said Thursday in its advisory. "But we are aggressively investigating the public report."

A patch for the flaw is not available. As an interim measure, the software giant advises people to set their Internet and local intranet security zone settings to "high" before running ActiveX controls.

The alert is part of a recently launched Microsoft program to confirm reports of security problems and provide a workaround until a fix is delivered.

The discovery of this latest IE flaw comes two weeks after Microsoft released several "critical" security patches, including one for IE.Those patches addressed vulnerabilities that allowed for remote execution of code.

SponsoredWhite Papers, Webcasts, and Downloads

  • Talkback
  • Most Recent of 150 Talkback(s)
Just what the doctor ordered!
Thank you Doc, for saying that! Too many IE loyalists just can't seem to open their eyes and get out of that mesmerizing trance of MS. Get real guys, give credit when it's due! Firefox WORKS and works a lot better than IE, and it is your escape from the claws of MS!... (Read the rest)
Posted by: netrocket Posted on: 07/09/05 You are currently: a Guest | | Terms of Use
Microsoft IE flaw  garyr_z | 07/01/05
You must be kidding  IceTheNet@... | 07/01/05
Get Firefox  Squawkbox | 07/01/05
SO YOU CAN HAVE ANOTHER BROWSER WITH FLAWS  internet11 | 07/01/05
browser question  msboc | 07/01/05
SBC yahoo is it's own browser  IceTheNet@... | 07/01/05
Sucky usually equals security  unoriginal_sin | 07/01/05
Not necessarily  Immanuel Tranz-Mischen | 07/02/05
wrong...  todbran@... | 07/07/05
yes  todbran@... | 07/07/05
Huh?  Jeff Spicoli | 07/01/05
Congratgulations  Squawkbox | 07/01/05
Why not use what's best for you for the moment  I_am_hellion_z | 07/02/05
Agreed ... no loyalty needed  __howard__ | 07/06/05
True, but......  todbran@... | 07/07/05
Good results with Firefox  jones172 | 07/01/05
Vee haff vays of makink Firefox run Active X  Knorthern Knight | 07/01/05
Just what the doctor ordered!  netrocket | 07/09/05
hang in there  marydaniels | 07/01/05
It Exist!  An_Axe_to_Grind | 07/01/05
I'm shocked!  TheCrow_z | 07/01/05
No_Ax, Come On, Give Us A Comment...CHICKEN  itanalyst | 07/01/05
Not the word I would use  Chad_z | 07/01/05
No, It's Appropriate  itanalyst | 07/01/05
technically...  linuxoverwindows | 07/02/05
pussy willow?  IceTheNet@... | 07/01/05
don't be so hard on chickens!  An_Axe_to_Grind | 07/01/05
My Unix Rep Briefed Us On This During Breakfast  itanalyst | 07/01/05
Nice Try.........Mikey you ain't  Squawkbox | 07/01/05
Hey, I Just Started A Week Ago  itanalyst | 07/01/05
Mikey you ain't  nightshade0143 | 07/01/05
That may have been worthy of a Mike Hunt though  Jeff Spicoli | 07/01/05
Leave me out of this!  Mike Hunt | 07/05/05
9.5 for effort  robgroh | 07/01/05
My Solaris contact was giddy  FilledOut | 07/01/05
pot kettle black?  JoeMama_z | 07/01/05
Here you go!  Jeff Spicoli | 07/01/05
I am gonna assume....  JoeMama_z | 07/01/05
Or...  brichter | 07/01/05
LOL how many security patches has IE seen?  maldain | 07/01/05
not trying to turn this into....  JoeMama_z | 07/01/05
not too many  unoriginal_sin | 07/01/05
This isn't....  todbran@... | 07/07/05
Re: pot kettle black?  nightshade0143 | 07/01/05
spoken....  todbran@... | 07/07/05
I swear to God  Real World | 07/01/05
Mine ain't bwahahahahaha  Squawkbox | 07/01/05
Thank you Mr. Miyagi  Jeff Spicoli | 07/01/05
You're welcome, Daniel-san  Real World | 07/05/05
SOS, DD !!!  realitycheck101 | 07/01/05
but who would get the......  JoeMama_z | 07/01/05
Or, conversely,  michael_t | 07/01/05
Bwahahahaha!!!  Jeff Spicoli | 07/01/05
I have done this for all of my garbage bins... (nt)  michael_t | 07/01/05
We should all wait...  deej_z | 07/01/05
Or not...  Wolfie2K3 | 07/01/05
Well Said...  deej_z | 07/01/05
YAWN!!!!  dbrimlow | 07/01/05
What else is news?  michael_t | 07/01/05
Gee, I wonder...  robgroh | 07/01/05
Don't surf the internet with Windows  Chad_z | 07/01/05
Yeah, I'm gonna run right out and buy a $500 paperweight  mustangj36@... | 07/01/05
Stick with your JUNK. No one needs you  Jeff Spicoli | 07/01/05
There's the attitude that's gonna keep Apple in third place forever.  mustangj36@... | 07/01/05
LMAO  glstorck@... | 07/01/05
actually linux is a fair alternative to XP  maldain | 07/01/05
It is ironic that people  michael_t | 07/03/05
lol Linux a fair alternative....  Scrat | 07/05/05
blabla...blabla..blabla...blabla  glstorck@... | 07/05/05
We the abused  Pbuz | 07/01/05
YES!  RPerkins | 07/01/05
We?  Immanuel Tranz-Mischen | 07/02/05
You spend way too much time talking to software reps.  maddog@... | 07/01/05
AMD should SUE these hackers!  ratboy_z | 07/01/05
GEE, THREE COMPUTER CRASHES AGO, THEY COULD HAVE TOLD ME  j1m2r3@... | 07/01/05
Simmer Down!  RPerkins | 07/01/05
Read the article FIRST before commenting...  Justin James | 07/01/05
Your post to my post  j1m2r3@... | 07/01/05
Somewhat in agreement....  RNdaSilva | 07/01/05
OS is irrelevant - human nature is the flaw  IceDragon_z | 07/01/05
Low level  j1m2r3@... | 07/01/05
i think i speak for everyone when i say.....  JoeMama_z | 07/01/05
Message has been deleted.  j1m2r3@... | 07/01/05
are your saying your post.....  JoeMama_z | 07/01/05
Did you even read the post?  IceDragon_z | 07/01/05
Using programs  big-skip@... | 07/02/05
honest say?  RNdaSilva | 07/01/05
If you didn't get it you prove my point.  IceDragon_z | 07/01/05
Look at your title and say that with a straight face. happy  IceDragon_z | 07/02/05
Message has been deleted.  IceDragon_z | 07/02/05
No disrespect intended  IceDragon_z | 07/01/05
I just call them how I see them.  IceDragon_z | 07/01/05
j1m2r3 -- please read this... you've got me all wrong  IceDragon_z | 07/01/05
Amen  SDaveley | 07/01/05
Glad someone understood what I meant.  IceDragon_z | 07/01/05
To say that "All OS are flawed"  fmcgowan | 07/01/05
Camp... what camp?  IceDragon_z | 07/01/05
I couldn't have said it better...  RNdaSilva | 07/01/05
Thanks for the reply  IceDragon_z | 07/01/05
My last post on the subject  IceDragon_z | 07/02/05
More Zombies  dang3@... | 07/01/05
A challenge to the security firms  trm1945 | 07/01/05
Excellent suggestion.  mustangj36@... | 07/01/05
Timing of Story  RickyF | 07/01/05
Actually  IT Scion | 07/05/05
M$ probably posted advisory after ZDNet pub. deadline for day.  wessonjoe | 07/05/05
More Zombies  arora515@... | 07/01/05
IE Flaw, no prob.. but where's the patch?  Airwolph | 07/01/05
Maybe I missed something, but...  brble | 07/01/05
No need to report ... if everyone switches to Firefox  SWORC | 07/01/05
This kind of arguement is ridiculous  peeseebeeb@... | 07/01/05
BZZZZT! Wrong...  Nullifidian | 07/01/05
you are talking about security through obscurity....  JoeMama_z | 07/01/05
Opinion  peeseebeeb@... | 07/01/05
Actually, you're partly right.  maldain | 07/01/05
Hands up  peeseebeeb@... | 07/01/05
RE: Hands up  cobalt54 | 07/02/05
Your response implies ....  George Jay | 07/02/05
FireFox flaw?  mcswell | 07/01/05
FireFox flaw?  Immanuel Tranz-Mischen | 07/02/05
no surprise  maru13@... | 07/01/05
Idiot's Excrement Has a Flaw, NOOOOOO0000000oooooo (nt)  tbbrickster_z | 07/01/05
Cheap Beta Testers?...The Public  linuxdeluxmssux | 07/01/05
losses?  JoeMama_z | 07/01/05
Gee Joemama Do you work for Microsoft  j1m2r3@... | 07/01/05
way to repond to my post....  JoeMama_z | 07/01/05
Consumer Revolt Nothing  j1m2r3@... | 07/01/05
The Problem is Active-X  JMusto | 07/01/05
One two and three  IT Scion | 07/05/05
IT is misreading javaprxy.dll to mean the JVM. ERROR!  wessonjoe | 07/05/05
IE FLAWS ME & MANY OTHERS  stuart_hellen@... | 07/01/05
Message has been deleted.  gamerzworld | 07/01/05
Easy Solution To Microsofts Security Problems  iminok | 07/02/05
Re: Easy Solution To Microsofts Security Problems  joe6pack_z | 07/02/05
Put your money where your mouth is, jerkweed.  Immanuel Tranz-Mischen | 07/02/05
Microsoft warns of IE flaw -- NO PROBLEM  pradeep_pvnm | 07/02/05
Wasn't it said just a couple weeks back that fewer flaws were being found?  HypnoToad | 07/02/05
What's to like?  Immanuel Tranz-Mischen | 07/02/05
If Microsoft made automoviles...  jolumoar | 07/02/05
flaws on IE  eleyvaf | 07/02/05
Flaws on IE  big-skip@... | 07/02/05
Move back and forth  uno@... | 07/02/05
MS invasion of privacy  robapacl@... | 07/03/05
IE = Microsofts poor intepretation of the Internet  Frossbyte | 07/03/05
View it again with Amaya and behold the wierdness  Boot_Agnostic | 07/04/05
typical M$, attempt coverup rather than fix. since the article and M$ note  wessonjoe | 07/05/05
a M$ warning is just an admission of guilt for crappy programming! (nt)  wessonjoe | 07/05/05
IE is a flaw and you all are the exploits  Boot_Agnostic | 07/05/05
Good one d00d!  Reverend MacFellow | 07/06/05
Buy a Big Mac  Boot_Agnostic | 07/06/05

What do you think?

advertisement
advertisement

White Papers, Webcasts, and Downloads

SmartPlanet

  • Thought-provoking progressive ideas on diverse topics that intersect with technology, business, and life, and matter to the world at large. Visit SmartPlanet
  • More from IBM
  • Innovate your business' process model, play against the market, compete against others on our scoreboards and WIN! Try INNOV8 2.0: A BPM Simulator
  • Enabling Real-World Business Transformation through IBM Service Management Read the EMA Analyst Report
Click Here