homepage Welcome to WebmasterWorld Guest from 54.234.29.117
register, login, search, subscribe, help, library, PubCon, announcements, recent posts, open posts,
Subscribe to WebmasterWorld
Visit PubCon.com
Home / Forums Index / Microsoft / (deprecated) Microsoft Windows OS (XP/NT/Vista)
Forum Library : Charter : Moderators: bill

(deprecated) Microsoft Windows OS (XP/NT/Vista) Forum

    
Microsoft to rush out emergency IE patch
patches for Internet Explorer and for Visual Studio
Robert Charlton




msg:3959405		 6:51 am on Jul 25, 2009 (gmt 0)

Microsoft to rush out emergency IE patch [computerworld.com]
Computerworld
July 24, 2009

In a rare move, Microsoft on Friday said it would be releasing security updates on Tuesday--outside of its monthly patch cycle--for a critical vulnerability in Internet Explorer and a moderate vulnerability in Visual Studio.

The two security bulletins will address one overall issue and are being released separately "to provide the broadest protections possible to customers," Microsoft said in a statement....


 

bill




msg:3959425		 7:50 am on Jul 25, 2009 (gmt 0)

I found this part interesting at the end of the article:
Microsoft didn't give a reason for the rushed update but it may be trying to stay ahead of any public disclosure at next week's Black Hat security conference in Las Vegas.

jdMorgan




msg:3959497		 1:48 pm on Jul 25, 2009 (gmt 0)

It's really been a bad month for browser security. As of today, we have unpatched vulnerabilities in Sun Java JRE 6U14, Adobe Reader 9 and Flash Player 10, IE8, and SeaMonkey/1.1.17 (formerly Mozilla Suite).

Jim

JS_Harris




msg:3959682		 3:45 am on Jul 26, 2009 (gmt 0)

My IE is set to connect over LAN and resolved to ip 0.0.0.0 which completely disables it, that's not changing anytime soon. This is getting ridiculous in its regularity.
bill




msg:3959988		 1:43 am on Jul 27, 2009 (gmt 0)

My IE is set to connect over LAN and resolved to ip 0.0.0.0 which completely disables it

JS_Harris I've seen you mention this in various posts for several months now. I just wanted to point out to members that you shouldn't do this unless you know what you're doing. This sort of setting can stop the updates of multiple software packages that use IE's settings to connect to the Internet.
kaled




msg:3960181		 10:32 am on Jul 27, 2009 (gmt 0)

My IE is set to connect over LAN and resolved to ip 0.0.0.0 which completely disables it

I'm going to be blunt...

Disabling Internet Explorer by messing with its connection settings is utterly pointless.

  1. Internet Explorer vulnerabilities affect Internet Explorer only - if you don't use Internet Explorer then these vulnerabilities do not affect you in any way.
  2. As other have pointed out, this will break other legitimate applications that use these settings.
  3. Use of these settings by other applications does NOT make them vulnerable.
  4. Malware is unlikely to use these settings so disabling IE in this way is unlikely to protect you from any malware that is already present on your computer.

Kaled.

smconline




msg:3960701		 1:51 am on Jul 28, 2009 (gmt 0)

Ah crap! I just realized I'm reading these posts on IE8 now. Son of a @#$%&!
bill




msg:3961413		 1:17 am on Jul 29, 2009 (gmt 0)

The patches are available for me now from Japan. They should have the other markets available as well.
tedster




msg:3961457		 3:38 am on Jul 29, 2009 (gmt 0)

Yes - the IE blog confirms [blogs.msdn.com] that the update is now available.
Global Options:
 top home search open messages active posts  
 

Home / Forums Index / Microsoft / (deprecated) Microsoft Windows OS (XP/NT/Vista)
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About
WebmasterWorld ® and PubCon ® are a Registered Trademarks of Pubcon Inc.
© Pubcon Inc. 1996-2012 all rights reserved