Internet explorer security risk
Internet explorer security risk – internet explorer problems – Just for once, a major security hole was discovered after the traditional monthly Patch Tuesday, which was therefore particularly this month. It affects all versions of Internet Explorer and allows remote code execution, as the installation of malicious software without further intervention from the user visiting a website.
Discovery last week, the flaw was widely exploited, as nearly 6000 websites were infected Saturday and that number is rapidly increasing, according to security specialist TrendMicro. Microsoft also issued a bulletin warning that the protected mode of IE7 allows you to “limit the impact of vulnerability.”
The Redmond firm invites webmasters to prevent SQL injections used to infect them and tries to minimize the number of pending issue a fix within a period not reported, without waiting for monthly updates.
Another bulletin was posted to warn computer professionals of how the why. The affected versions of Internet Explorer are:
* Internet Explorer 5.01 Service Pack 4
* Internet Explorer 6 Service Pack 1
* Internet Explorer 7
* Internet Explorer 8 Beta 2
All versions of Windows with technical support are affected:
* Windows XP Service Pack 2
* Windows XP Service Pack 3
* Windows Server 2003 Service Pack 1
* Windows Server 2003 Service Pack 2
* Windows Vista
* Windows Vista Service Pack 1
* Windows Server 2008
The flaw lies in the treatment of certain XML data and can lead to the closure of the browser remains in a state not secure. Maximum exploitation of the flaw, which exists as Microsoft, led the attacker to obtain the same rights as the user. If it enjoys a standard, the machine will be less impacted than an administrator account. Similarly, with Vista and Windows Server 2008, protected mode limit the damage.
As for the flaw on Wordpad, Microsoft said work on a solution.
Leave your response!