IE flaw puts Windows XP SP2 at risk | Tech News on ZDNet

On The Insider: Britney's Bikini-Clad Top 10

BNET Business Network:: BNET; TechRepublic; ZDNet

By Dawn Kawamoto
Posted on ZDNet News: Sep 16, 2005 2:08:00 PM

A flaw has been discovered in Internet Explorer that could enable a remote attack on systems running Windows XP with Service Pack 2, eEye Digital Security has warned.

The flaw, which also affects systems running Windows XP, is found in the default installations of Microsoft's IE, according to an advisory released by the security company on Thursday.

"The flaw is not wormable but allows for the remote execution (of code) with some level of end-user intervention," said Mike Puterbaugh, eEye's senior director of product marketing.

The discovery of this IE flaw comes just over a month after Microsoft issued a cumulative patch addressing three vulnerabilities for IE.

The new IE flaw also adds to another vulnerability, discovered last month, that affects systems using Windows XP SP2.

Microsoft's Windows XP with SP2 is designed to make it more difficult for attackers to run malicious software on users' computers.

A Microsoft representative confirmed that the company had received the report from eEye and said it will be investigating the issue. Because the details of the vulnerabilities have not been made public, users are not at risk of an exploit being developed to take advantage of the flaw, the representative said.

eEye has provided Microsoft with details about the flaw, but the security researcher does not release details to the public until a vendor has developed a relevant patch or issued an advisory.

SponsoredWhite Papers, Webcasts, and Downloads

Email Security and Archiving - Clearer in the Cloud Google The time is NOW for businesses and organizations of all sizes to implement ... Download Now
Virtualization: Architectural Considerations And Other Evaluation Criteria VMware Of the many approaches to x86 systems virtualization available in the ... Download Now
Reducing Server Total Cost of Ownership with VMware Virtualization Software VMware VMware virtualization enables customers to reduce their server TCO and ... Download Now

Talkback
Most Recent of 139 Talkback(s)

Thread View
Flat View

RE: IE flaw puts Windows XP SP2 at risk: You are teh ghey (Read the rest); Posted by: Duke E. Love Posted on: 07/15/08 You are currently: a Guest | Log in | Terms of Use

IE flaw puts Windows XP SP2 at risk Loverock Davidson | 09/16/05

Microsoft's part... ju1ce | 09/16/05

Actaully you are wrong there buddy... Linux Guy 1000 | 09/16/05

I'm never wrong Loverock Davidson | 09/16/05

Message has been deleted. stormdoor | 09/16/05

Correction maddog@... | 09/16/05

You sure were when you picked your username daver_z | 09/16/05

Like he had any credibility to begin with.. widge_z | 09/16/05

Uhh... thatguy888@... | 09/16/05

Actually Linux Guy 1000 | 09/16/05

Responsibility tic swayback | 09/16/05

Nope. osreinstall | 09/16/05

Putting the car in reverse at 70 gardoglee | 09/16/05

bad comparison jake.f@... | 09/16/05

MS isn't responsible for malware osreinstall | 09/16/05

Gardaglee Is Right EBathory | 09/16/05

Windows Versions, Windows "Security" PMC-CON | 09/16/05

How many people run firewalls before SP2 osreinstall | 09/16/05

Fools vs. Foolproof, fails either way. wink

wink

Katatawnic_z | 09/16/05

GGGRRRR! Katatawnic_z | 09/16/05

I believe it is bracketts not angle brackets osreinstall | 09/16/05

You're lucky your credit card company doesn't think this way Immanuel Tranz-Mischen | 09/18/05

What a comparison osreinstall | 09/18/05

Yes IT Scion | 09/16/05

I was going for the temptation angle. osreinstall | 09/16/05

Yea the temptation angle IT Scion | 09/16/05

The car analogy osreinstall | 09/16/05

Yep tic swayback | 09/16/05

Sort of. osreinstall | 09/16/05

Agreed, but.... tic swayback | 09/16/05

Vista/IE7 Contrivances PMC-CON | 09/16/05

You do what you can. osreinstall | 09/16/05

PMC and OSReinstall tic swayback | 09/16/05

It's called IT Scion | 09/16/05

Another thing not considered osreinstall | 09/16/05

re: Another thing IT Scion | 09/16/05

Where did you learn to drive happy

happy

jumpa | 09/16/05

Be a good boy Linux Guy 1000 | 09/16/05

I am a good boy (sometimes) jumpa | 09/17/05

In a parking lot at night osreinstall | 09/17/05

My good friend Andy Dufrane..... Bacon 3000 | 09/16/05

Good to see you Morgan tic swayback | 09/16/05

Hello Tic Bacon 3000 | 09/16/05

lol D-Ram | 09/16/05

Relevant patch oscarwms | 09/16/05

I've got to agree with you on this one Otto_Delete | 09/16/05

What a barrel of laughs ,,, Elite_z | 09/16/05

Here we go again Jeff the god of biscuits | 09/16/05

Lets see if this works Jeff the god of biscuits | 09/16/05

Jeff try this... Linux Guy 1000 | 09/16/05

the fix: linuxoverwindows | 09/16/05

Why is this even news? Letophoro | 09/16/05

True, MS security problems are so numberous and severe, not news anymore. DonnieBoy | 09/16/05

I agree, it's boring. But I have some good news! Qbt | 09/17/05

This is just hype... Mike Cox | 09/16/05

Arg... 2.1 nucrash | 09/16/05

Let's do lunch (nt) s_gamgee | 09/17/05

Achieving total security..... todbran@... | 09/16/05

That's a good one garlock | 09/16/05

Microsoft needs to start over duclod | 09/16/05

Mike Cox.com Reverend MacFellow | 09/19/05

5.0 with 1 Extra Point for Sucker Snagging (nt) tbbrickster_z | 09/16/05

Good one! daver_z | 09/16/05

I smell fresh (actually new) blood shallow_diver | 09/16/05

HAHAHAHAHA Loveajock has all the answers doesnt he educateme@... | 09/16/05

arguing on the internet .... specialk_z | 09/16/05

...is like running in the....(nt) IT Scion | 09/16/05

...special olympics... linuxoverwindows | 09/16/05

Team Player Too Old For IT | 09/16/05

next stormdoor | 09/16/05

Free Software Required ndnetregister | 09/16/05

I am needing advertisement dragontiger | 09/16/05

Are You Nuts? Or trolling for Worms? PMC-CON | 09/16/05

OSS is superior to propritary software in all possible ways. Jeff the god of biscuits | 09/17/05

Even your sarcasm sucks Chad_z | 09/19/05

Huh?... Colonel_Panic | 09/19/05

"The flaw is not wormable" voice_of_all_reason | 09/16/05

you've got it all wrong kiz | 09/16/05

Good job ensign! toadlife | 09/16/05

Uhg! daver_z | 09/16/05

My! Aren't You the Sensitive One Today tbbrickster_z | 09/16/05

You wish daver_z | 09/16/05

Borklovers GottaLottaLuv | 09/16/05

typical daver_z | 09/16/05

Oh!! GottaLottaLuv | 09/16/05

Beam me out Scottie sykandtyed | 09/16/05

And yet.... the top story is about Vista for tablets? dragontiger | 09/16/05

ummm IT Scion | 09/16/05

Hate Borkers GottaLottaLuv | 09/16/05

typical daver_z | 09/16/05

You will be... sykandtyed | 09/16/05

...But a spell checker can help. Scrat | 09/16/05

RE: ...But a spell checker can help. Katatawnic_z | 09/16/05

New IE Flaw..... Andromedat6 | 09/16/05

Isn't that known as "just a coding error' John Zern | 09/16/05

MICROSUCKS refers to this as "innovation" and a... realitycheck101 | 09/16/05

Perhaps... Wolfie2K3 | 09/16/05

And What Is eEye Marketing? WMD? PMC-CON | 09/16/05

Why Bash a Company for Doing What's Right? fredwhitaker@... | 09/16/05

Fred, are you sure about that? How many do you OWN? educateme@... | 09/16/05

Excuse me, but... 3D0G | 09/16/05

You also thing that SUN is unfairly bashed? nt michael_t | 09/16/05

surprise, surprise the_slash | 09/16/05

Does anyone know... dsentman@... | 09/16/05

Warts and All (Good point, daver!) Katatawnic_z | 09/16/05

WoW! Is this new? gamerzworld | 09/16/05

EARLIER THIS WEEK - FIREFOX/NOW -IE internet11 | 09/16/05

Message has been deleted. itanalyst | 09/16/05

Allow me... Anti_Zealot | 09/18/05

Perhaps we need an OS Messiah? Katatawnic_z | 09/16/05

That's Windows you're talking about Anti_Zealot | 09/18/05

eEye up to its usual tricks as usual... Scrat | 09/16/05

Where's George Ou to defend MS? IT-sys | 09/16/05

He's probably making more selective benchmarks (nt) Anti_Zealot | 09/18/05

trojans alandee4 | 09/16/05

Re:Apple Andromedat6 | 09/16/05

IE6 and Windows XP SP2 - more crap gerryrains@... | 09/16/05

IE6 and Windows XP SP2 - more crap..../hey you need security stuff anyways. prattchris@... | 09/16/05

Give me a break !! tgurwell@... | 09/16/05

Yea, that's weird... Qbt | 09/17/05

YES-No One Clicks On The LINK internet11 | 09/17/05

Internet11 you are being too reasonable BXLE | 09/17/05

Yea. Tell Me About It. internet11 | 09/17/05

Misinterpretation?? Aaron A Baker | 09/18/05

Microsoft has never been about the customer Linux Guy 1000 | 09/18/05

Internet Explorer wary | 09/17/05

Can I put my sixpack here (somewhat OT) s_gamgee | 09/17/05

The title!!! s_gamgee | 09/17/05

Software Security DonPMitchell@... | 09/17/05

Can you justify your statement? Linux Guy 1000 | 09/18/05

"NEW" Flaw?????????????????????????? btljooz | 09/17/05

Already attacked by automated exploit kokuryu | 09/17/05

Relevant Patch?? Aaron A Baker | 09/18/05

Here we go again Anti_Zealot | 09/18/05

FIGHT THE POWER TechTVisDead | 09/18/05

What else is new? Reverend MacFellow | 09/19/05

cox.com Reverend MacFellow | 09/19/05

Thank goodness I'm running Corel Linux Boot_Agnostic | 09/20/05

RE: IE flaw puts Windows XP SP2 at risk Duke E. Love | 07/15/08

What do you think?

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

White Papers, Webcasts, and Downloads

Email Security and Archiving - Clearer in the Cloud Google The time is NOW for businesses and organizations of all sizes to implement ... Download Now
Virtualization: Architectural Considerations And Other Evaluation Criteria VMware Of the many approaches to x86 systems virtualization available in the ... Download Now
Reducing Server Total Cost of Ownership with VMware Virtualization Software VMware VMware virtualization enables customers to reduce their server TCO and ... Download Now

Popular Sanity Saver Videos

Blogs

Product Reviews

Videos

White Papers and Webcasts

Downloads

More