Forgot your password?
typodupeerror
Internet Explorer Bug Microsoft Security IT Technology

IE Patch To Fix 57 Vulnerabilities 91

Posted by timothy
from the there's-a-sauce-for-that dept.
Billly Gates writes "Microsoft is advising users to stick with other browsers until Tuesday, when 57 patches for Internet Explorer 6, 7, 8, 9, and even 10 are scheduled. There is no word if this patch is to protect IE from the 50+ Java exploits that were patched last week or the new Adobe Flash vulnerabilities. Microsoft has more information here. In semi-related news, IE 10 is almost done for Windows 7 and has a IE10 blocker available for corporations. No word on whether IE 10 will be included as part of the 57 updates."
This discussion has been archived. No new comments can be posted.

IE Patch To Fix 57 Vulnerabilities

Comments Filter:
  • by eksith (2776419) on Saturday February 09, 2013 @10:36AM (#42842981) Homepage

    The fact that IE6 is being patched means someone dropped a NS bomb on them (National Security) which is a sure fire way to motivate companies to keep their software secure. I know it's not the favorite company here, but they fought (sometimes dirty) to get where they are. They made it and have to deal with the "now what?" phase. Software monocultures suck no matter who's culture it is.

    What I found really interesting is that bulletins 7-9 and 11 are for escalation of privilege whereas the rest are for remote code execution. Which means, it may not have helped much to be logged in as an unprivileged user anyway.

  • by djmurdoch (306849) on Saturday February 09, 2013 @10:40AM (#42843001)

    The submitter got it by misreading the ZDnet article. It was the author of that article (Zack Whittaker) who made the recommendation, not MS.

  • Re:Seriusly? (Score:5, Informative)

    by jones_supa (887896) on Saturday February 09, 2013 @10:43AM (#42843021)
    There seems to be a mistake in the summary. The ZDNet article says "With this in mind, users are advised to switch to another browser for the next few days until the updates are released." That seems like ZD's own recommendation, I couldn't find that from the MS security bulletins.
  • ZDNet = Garbage (Score:2, Informative)

    by Anonymous Coward on Saturday February 09, 2013 @10:54AM (#42843077)

    They are 12 vulnerabilities and 57 patches across all their operating systems. 2 are critical.

  • by Ralish (775196) <ralish@gmai l . com> on Saturday February 09, 2013 @03:28PM (#42845015)

    At least, I assume that is the prevailing attitude on Slashdot these days? Let's see:

    IE Patch to Fix 57 Vulnerabilities
    No, as per the linked Security Bulletin Advance Notification [microsoft.com] a total of 57 vulnerabilities are being fixed across Windows, Internet Explorer, Office & the .NET Framework. There are not 57 vulnerabilities exclusively in Internet Explorer as the title suggests. We can likely further expect certain vulnerabilities to only be applicable to certain versions of Internet Explorer once the full details are available.

    Microsoft is advising users to stick with other browsers until Tuesday
    Source?

    ...when 57 patches for Internet Explorer 6, 7, 8, 9, and even 10 are scheduled.
    No, as noted above, the vulnerabilities are across a variety of products. Further, 13 "patches" (aka. updates or bulletins if you prefer) are being released as multiple vulnerabilities are often patched in a single update. As per the linked bulletin, there are two bulletin's being released for Internet Explorer, which would typically result in two updates for Internet Explorer for a given Windows installation. Of course, there'll be many different updates released for different versions of IE and architectures (ie. 32-bit/64-bit/etc...) but a given Windows installation shouldn't have more than two applicable to it.

    No word on whether IE 10 will be included as part of the 57 updates.
    Apart from the explicit reference to Internet Explorer 10 being affected by at least some of these vulnerabilities in the linked MS Advance Notification? Have you tried reading the very articles you post? I'm reliably informed it helps comprehension.

    Are the editors trying to set a new record for inaccuracies within a small paragraph of text?

  • by Ralish (775196) <ralish@gmai l . com> on Saturday February 09, 2013 @03:38PM (#42845097)

    The fact that IE6 is being patched means someone dropped a NS bomb on them (National Security)...

    It's being patched because IE6 shipped with Windows XP and MS guarantees they will support the version of IE that was shipped with a given release of Windows for the support lifetime of that Windows release. Windows XP is supported into 2014, so Internet Explorer 6 on Windows XP is as well. This is not a secret.

RADIO SHACK LEVEL II BASIC READY >_

Working...