Microsoft releases Internet Explorer fix
Microsoft published a patch for Internet Explorer on Wednesday, aiming to close a month-old hole that has been used by viruses to spread and by an ad banner attack to compromise PCs.The vulnerability, dubbed the Internet Explorer Elements flaw by Microsoft, had previously been called the iFrame vulnerability. The issue–which does not affect Microsoft’s major Windows XP security update, Service Pack 2–could allow an attacker to take control of a victim’s PC, if the user is logged on as an administrator. Most home users tend to log onto Windows as administrators.
A Microsoft representative said the software giant had released the update before its next scheduled patch day, Dec. 7, because it had already been used by malicious software to compromise Windows users’ PCs.
“That’s one of the things that we factor in–when the customers are affected or there are active attacks,” said Stephen Toulouse, security program manager at Microsoft’s security response center.
News source: CNET News
页:
[1]