All the latest UK technology news, reviews and analysis

Microsoft offers temp fix for 'critical' flaw

by Tom Sanders in California

07 Jul 2005

Comment: 1

  • Tweet this
Microsoft
Hole causes IE to crash or could allow hackers to take control of a user's system

Microsoft has updated a security advisory published in June, offering users a way to become immune to a highly critical flaw in Internet Explorer. 

The flaw causes IE to crash or could allow hackers to take control of a user's system by placing specially created code on a website, according to Sec-Consult which first reported the flaw. 

Further reading

It affects current versions of IE on fully patched systems, and has been rated 'extremely critical' by security website Secunia.

Microsoft has confirmed the flaw. Exploit code is publicly available, but the software vendor claimed that it is not aware of any attacks using the exploit.

The workaround requires uses to manually prevent a .dll file from running, or to set the Windows internet security settings to 'high' to prevent ActiveX commands from being executed.

Although the workaround can reduce functionality and does not repair the actual flaw, it does prevent users from being affected.

Microsoft said that it is studying the flaw and will provide further information in the future, either through a refined workaround or a patch.

Do you agree?

Add your comment

Software these days...

Wel, it seems every software developer has problems making bug free software. This time it's Microsoft. The next bug is in Mozilla Firefox etc etc etc. In the mean time the user is left with a computer that when connected to the internet is inherently unsafe to operate. The day bug are squashed it the day the computer end to be a computer i gues. My 2 cents.

Posted by: A computer user 07 Jul 2005

Add your comment
 

Add your comment

We won't publish your address
By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.
Submit your comment

Latest stories from Security

Concept image of broken USB representing a data leak

Nuclear watchdog loses USB containing data on power plant in Hartlepool

Related white papers

Related articles

Related jobs

Today's top stories

Microsoft Windows 8 start screen

Top 10 Microsoft Windows 8 features to be excited about

Barclays Pingit Application in use on an iPhone

Barclays launches Pingit mobile payment service for iPhone, Android and BlackBerry

V3 reporter Dan Worth

World-changing CERN experiments highlight humanity’s intrinsic curiosity

Poll

IT priorities for 2012

What is the most important IT priority for your company this year?

99%

0%

1%

0%

0%

Features

V3 reporter Dan Worth

World-changing CERN experiments highlight humanity’s intrinsic curiosity

V3 and The INQUIRER editor Madeline Bennett

BBC and Sky News show tough love with Twitter policies

V3's Rosalie Marshall

World indulges in a Facebook facts fest as firm prepares to float

facebook-new

Top five most interesting figures from Facebook’s IPO

More features

Connect with V3.co.uk

Sign up to our daily or weekly newsletters

Case studies and reports

Accurev

Top 5 software development challenges

This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes

Talend

Rubbish in, rubbish enterprise

Why good data management at all levels is essential in the modern business (video, 6mins)

Technology jobs

C# DEVELOPER- Commodities Index Trading

A senior C# developer is required by a leading investment...

SENIOR JAVA/ J2EE DEVELOPER

A senior JAVA developer is required by a leading financial...

AGILE JAVA DEVELOPER- INVESTMENT BANKING

A leading investment bank are looking for an AGILE JAVA...

C# WPF F# developer- Quant group

A senior C# WPF F# developer is required by a leading...

To send to more than one email address, simply separate each address with a comma.