Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Microsoft releases OOB security update to fix critical vulnerability in Internet Explorer


  • Please log in to reply
2 replies to this topic

#1 Grinler

Grinler

    Lawrence Abrams


  • Admin
  • 43,640 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:11:44 PM

Posted 14 January 2013 - 02:13 PM

Microsoft released an OOB, or out-of-band, security update today that resolves a security vulnerability in Internet Explorer versions 6,7, and 8. Internet Explorer 9 and 10 are not affected by this vulnerability. This vulnerability is classified as critical as it allows Remote Code Execution on the vulnerable computer. Remote code execution is when a remote script is able to exploit a vulnerability so that it can execute programs and commands on the vulnerable program.

Microsoft Security Bulletin MS13-008 for this update states:

This security update resolves one publicly disclosed vulnerability in Internet Explorer. The vulnerability could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.


This security update is titled Security Update for Internet Explorer (2799329) and is available immediately through Windows Update. Please be sure to check for new updates in Windows Update and install this update. Please note that this update will require you to reboot your computer, so be sure to save any opened files.


BC AdBot (Login to Remove)

 


#2 jntkwx

jntkwx

  • Malware Response Team
  • 4,339 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New England, U.S.A.
  • Local time:11:44 PM

Posted 14 January 2013 - 02:22 PM

If the previously-released Microsoft Fix-It workaround was installed:

Applying this workaround will not interfere with the installation of the final security update that addresses this issue. However, applying the workaround will have a small effect on the startup time of Internet Explorer. Therefore, as you are applying the final security update, you should uninstall the workaround as it will no longer be needed.


http://blogs.technet.com/b/srd/archive/2012/12/31/microsoft-quot-fix-it-quot-available-for-internet-explorer-6-7-and-8.aspx
Regards,
Jason

 

Simple and easy ways to keep your computer safe and secure on the Internet

If I am helping you and have not returned in 48 hours, please feel free to send me a PM with a link to the topic.
My help is free... however, if you wish to show appreciation and support me personally fighting against malware, please consider a donation: btn_donate_SM.gif


#3 Romeo29

Romeo29

    Learning To Bleep


  • Members
  • 3,194 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:127.0.0.1
  • Local time:10:44 PM

Posted 15 January 2013 - 06:25 AM

Thanks Grinler. I am going to install it right now even though I dont use it.

Edited by Romeo29, 15 January 2013 - 06:26 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users