Democratic Underground Latest Greatest Lobby Journals Search Options Help Login
Google

CNet: Microsoft warns of critical IE flaws

Printer-friendly format Printer-friendly format
Printer-friendly format Email this thread to a friend
Printer-friendly format Bookmark this thread		 This topic is archived.
Home » Discuss » Latest Breaking News Donate to DU
 
Atlant Donating Member (1000+ posts) Send PM | Profile | Ignore Thu Aug-21-03 08:26 AM
Original message
CNet: Microsoft warns of critical IE flaws
http://zdnet.com.com/2100-1105_2-5066511.html

Microsoft warns of critical IE flaws



CNET News.com

Microsoft alerted PC users to three critical security flaws in Internet Explorer and Windows on Wednesday, as
the MSBlast worm and its variants used a previous vulnerability in Windows to spread across the Net for a
second week.

The software giant released a cumulative patch for Internet Explorer that fixes several vulnerabilities previously
disclosed by the company, and it re-released an advisory for Microsoft's SQL Server software, warning that a flaw in
that program actually affects most Windows users.

Users who don't patch their systems could leave the computers open to attack through a fake Web page or an HTML
e-mail that contains the specific exploit code, said Stephen Toulouse, security program manager for Microsoft's
security response center.

"The Internet Explorer bulletin is rated as 'critical' across all platforms except Windows 2003," Toulouse said. A critical
rating is the highest grade that Microsoft assigns to its alerts. The flaws were rated 'moderate'--the second-lowest
grade--for Windows 2003, the latest version of the operating system.

On Wednesday, security-software maker Symantec said that MSBlast, a worm that takes advantage of a month-old
vulnerability in Microsoft's OS, had infected almost 700,000 computers. A variant of the worm, MSBlast.D or Nachi,
had infected more than 525,000 computers since it began to spread on Monday

<more>
Printer Friendly | Permalink |  | Top
ixion Donating Member (1000+ posts) Send PM | Profile | Ignore Thu Aug-21-03 08:30 AM
Response to Original message
1. a link to the patch

http://www.microsoft.com/windows/ie/downloads/critical/822925/default.asp
Printer Friendly | Permalink |  | Top
 
htuttle Donating Member (1000+ posts) Send PM | Profile | Ignore Thu Aug-21-03 08:33 AM
Response to Original message
2. They must have found a whopper of a Schroedinbug recently

schroedinbug /shroh'din-buhg/ n.     A design or implementation bug in a program that doesn't manifest until someone reading source or using the program in an unusual way notices that it never should have worked, at which point the program promptly stops working for everybody until fixed. Though (like bit rot) this sounds impossible, it happens; some programs have harbored latent schroedinbugs for years. Compare heisenbug, Bohr bug, mandelbug.

http://info.astrian.net/jargon/terms/s/schroedinbug.html
Printer Friendly | Permalink |  | Top
 
Evil_Dewers Donating Member (1000+ posts) Send PM | Profile | Ignore Thu Aug-21-03 01:42 PM
Response to Original message
3. Microshaft...
masks itself as an operating system. Linux/Unix or Apple's OS is the way to go, baby.
Printer Friendly | Permalink |  | Top
 
Tripper11 Donating Member (1000+ posts) Send PM | Profile | Ignore Thu Aug-21-03 01:44 PM
Response to Original message
4. What if you don't use IE????
I use Avant Browser.....should I download the patch or what?
Printer Friendly | Permalink |  | Top
 
Evil_Dewers Donating Member (1000+ posts) Send PM | Profile | Ignore Thu Aug-21-03 01:48 PM
Response to Reply #4
6. tripper
Unless you have zero IE components as part of your OS (which is not likely), you should download the patch if using Windows OS. Windows and IE share some DLLs (dynamic link libraries).

BTW, the default browser for downloading from Microshaft is IE.
Printer Friendly | Permalink |  | Top
 
Walt Starr Donating Member (1000+ posts) Send PM | Profile | Ignore Thu Aug-21-03 01:45 PM
Response to Original message
5. Anybody running Microsoft products should update now!
There is no virus taking advantage of this exploit, for now.

If you read this and you don't update now, you will get a virus. It is only a matter of time.
Printer Friendly | Permalink |  | Top
 
Evil_Dewers Donating Member (1000+ posts) Send PM | Profile | Ignore Thu Aug-21-03 01:50 PM
Response to Reply #5
7. You are not guaranteed of getting a virus
if you don't add the patch...but do it anyway. I patched this morning. I only use Windows OS for games.
Printer Friendly | Permalink |  | Top
 
DU AdBot (1000+ posts) Click to send private message to this author Click to view this author's profile Click to add this author to your buddy list Click to add this author to your Ignore list Sat May 11th 2024, 09:46 PM
Response to Original message
Advertisements [?]
 Top

Home » Discuss » Latest Breaking News Donate to DU

Powered by DCForum+ Version 1.1 Copyright 1997-2002 DCScripts.com
Software has been extensively modified by the DU administrators

Important Notices: By participating on this discussion board, visitors agree to abide by the rules outlined on our Rules page. Messages posted on the Democratic Underground Discussion Forums are the opinions of the individuals who post them, and do not necessarily represent the opinions of Democratic Underground, LLC.

Home  |  Discussion Forums  |  Journals |  Store  |  Donate

About DU  |  Contact Us  |  Privacy Policy

Got a message for Democratic Underground? Click here to send us a message.

© 2001 - 2011 Democratic Underground, LLC