Tarun Posted December 3, 2004 Share Posted December 3, 2004 Internet Explorer Cumulative Update MS04-040 (KB889669)"Microsoft has issued a patch, out of its normal security patch cycle, for a critical bug in Internet Explorer versions from 6.0 up to but not including Windows XP Service Pack 2 (SP2).According to the advisory issued by Microsoft, the bug could allow remote code execution on an affected system. The vulnerability is a buffer overflow in the handling of IFRAME and EMBED tags. By providing oversized source fields for those tags, an attacker could potentially execute arbitrary code on the user's system. The vulnerability's severity is underscored by the fact that this is only the second time that Microsoft has issued an out-of-cycle security patch since it instituted its monthly patch cycles in November 2003. Windows 9x/MEWindows XP/2000/NTView: Microsoft KB889669 Article Link to comment Share on other sites More sharing options...
xper Posted December 3, 2004 Share Posted December 3, 2004 Posted yesterday. http://www.msfn.org/comments.php?shownews=10888Thanks anyway. Keep news coming. Link to comment Share on other sites More sharing options...
Tarun Posted December 3, 2004 Author Share Posted December 3, 2004 Ahh, my apologies. Please delete this post if you wish. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now