All the latest UK technology news, reviews and analysis
|
|
|
17 Nov 2004
Microsoft has re-released a security patch for Internet Security and Acceleration (ISA) Server after a major code revision.
The updated patch, first released on 9 November, is for ISA Server 2000 and Microsoft Proxy Server 2.0. Details can be found here.
Users of Microsoft Small Business Server 2003 Premium Edition and Small Business Server 2000 are also advised to patch since this software uses the ISA code.
The patch is intended to plug a hole that could allow hackers to pretend that their code had been cleared as trusted content.
Microsoft warned that the flaw could be used to allow malicious software to be embedded in web pages that appear legitimate to casual users.
The company has also published a workaround for those unable or unwilling to patch. Microsoft recommends setting the DNS cache size to zero, effectively disabling DNS caching on the affected system.
This would prevent the affected software from using potentially spoofed data from the cache, but may have negative performance impact on DNS resolution.
Latest stories from Security
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Sneak peek at the forthcoming glass-based machine
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
Skills: OO Development, Scripting, Functional My client...
Agile Java Developer - Media - London Key Words: Agile...
Technical support Specialist (2/3 rd Line) CCNA...
Functional Test Engineers needed, Berkshire, up to £30k...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?