Emergency Microsoft hack fix
2pnet.net News:- Microsoft has published an emergency fix for a critical security hole in Internet Explorer.
“Via a carefully made webpage, malicious hackers can exploit this bug to take over machines,” states the BBC. “Porn sites were among the first to exploit this bug but many others started to use it once it became more widely known.”
The flaw has, “become the target of widespread hacking attacks,” says The Register, continuing:
“A security bug in the Vector Markup Language (VML) component of IE has been used to infect users visiting specific pornographic, or other maliciously constructed, websites. Security firms report the increased prevalence of mass mailing lures that attempts to direct surfers to web sites hosting VML exploit code, using tricks including claims that users have received a Yahoo! Greeting Card.
“Microsoft, contrary to reports from independent security experts such as the SANS Institute, continues to maintain that these attacks remain ‘limited’.”
Bill and the Boyz usually release security updates once a month but, “the growing number of attacks using the loophole forced it to move early,” says the BBC. “Cyber criminals are known to be using the bug to install keyloggers, adware and spyware and take over Windows PCs.”
Security patch (MS06-055) is available outside Microsoft’s regular Patch Tuesday update cycle, “a rare but not unprecedented move,” says The Register.
“Additionally, Microsoft is also making available a revised version of the MS06-049 update for Windows 2000 customers. Both updates are rated as ‘critical’ (natch). Microsoft next patch Tuesday diary date falls on 10 October.”
Also See:
BBC – Microsoft patches bad browser bug, September 27, 2006
The Register – MS releases emergency IE fix, September 27, 2004
p2pnet newsfeeds for your site.
rss feed: http://p2pnet.net/p2p.rss
Mobile – http://p2pnet.net/index-wml.php
