BleepingComputer.com: Microsoft Emergency Fix Kills Bugs In Ie, Visual Studio

Jump to content

Page 1 of 1

You cannot start a new topic
You cannot reply to this topic

Microsoft Emergency Fix Kills Bugs In Ie, Visual Studio Microsoft Security Bulletin MS09-034 - Critical

#1 quietman7

Bleepin' Janitor

Group: Global Moderator
Posts: 25,506
Joined: 09-July 05
Gender:Male
Location:Virginia, USA

Posted 29 July 2009 - 07:10 AM

Quote

Microsoft issued two emergency updates on Tuesday to fix critical security bugs that leave users of Internet Explorer and an untold number of third-party applications vulnerable to remote attacks that completely commandeer their computers...

http://www.theregister.co.uk/2009/07/28/mi...tches_released/

Microsoft Security Bulletin MS09-034 - Critical
Cumulative Security Update for Internet Explorer (972260)
http://www.microsoft.com/technet/security/...n/MS09-034.mspx

Microsoft MVP - Consumer Security 2007-2012

Member of UNITE, Unified Network of Instructors and Trusted Eliminators

#2 Andrew

Bleepin' Night Watchman

Group: Moderator
Posts: 7,421
Joined: 05-December 05
Gender:Not Telling
Location:Right behind you

Posted 29 July 2009 - 04:49 PM

Bugger, that's nasty looking. You know it's bad when MS releases a patch outside their regular cycle.

Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.
Posted Image

Boredom Software Stop Highlighting Things

#3 scff249

Indecisive Lurker

Group: Members
Posts: 1,319
Joined: 14-February 08
Gender:Male
Location:A galaxy far, far away...

Posted 29 July 2009 - 05:49 PM

So that's what that update was for that I got last night.....

Also....what is their regular cycle again? The first Tuesday of the month or something? I can't quite remember.

This post has been edited by scff249: 29 July 2009 - 05:50 PM

"Ototo'i wa usagi o mita no...Kino wa shika...Kyo wa anata." -Kotomi Ichinose (Clannad) [see below for translation]
"Day before yesterday I saw a rabbit, and yesterday a deer, and today, you." -The Dandelion Girl
"You are not alone, and you are not strange. You are you, and everyone has damage. Be the better person." -Katawa Shoujo

#4 jchedot

Member

Group: Members
Posts: 65
Joined: 22-February 05

Posted 29 July 2009 - 07:00 PM

Second Tuesday of the month.

I finally got it all together, now if I could just remember where I put it.

#5 samuel3

Forum Addict

Group: Members
Posts: 2,224
Joined: 13-June 08
Gender:Male

Posted 29 July 2009 - 08:52 PM

I got the update today? Why a day late? Or whenever it was out? (Witch is longer)

#6 Romeo29

Learning To Bleep

Group: BC Advisor
Posts: 2,834
Joined: 06-July 08
Gender:Not Telling
Location:127.0.0.1

Posted 30 July 2009 - 12:35 AM

The bug was caused by a typo by Microsoft programmers. They typed an extra ampersand (&).

Quote

"The bug is simply a typo," Michael Howard, a principal security program manager in Microsoft's security engineering and communications group, said in a post Tuesday to the Security Development Lifecycle (SDL) blog. Howard, who is probably best known for co-authoring Writing Secure Code, went on to say that the typo -- an errant "&" character -- is the "core issue" in the MSVidCtl ActiveX control.

http://www.computerworld.com/s/article/913...t?taxonomyId=85

This post has been edited by Romeo29: 30 July 2009 - 12:35 AM

ZoneAlarm Free Antivirus+ Firewall | Bitdefender Safebox | avast! free antivirus | ESET Online Scanner

#7 QQQQ

Forum Regular

Group: Members
Posts: 165
Joined: 06-January 05

Posted 11 August 2009 - 08:57 AM

I have had that patch cause an issue on Windows 2000 PC's, 4 that I know of so far. Users called me with trouble connecting to the internet with Internet Explorer. Upon launching IE it would open, then close immediately. Then a download file prompt popped up like it wanted to download something, I thought it was malware related at first. The internet properties (options)were missing 3 tabs, security , privacy and content. Rebooting resolved the issue on all 4 computers.