Microsoft Issues Advisory For Internet Explorer Vulnerability 152
jones_supa (887896) writes "Neowin reports how Microsoft made a rare weekend post on its Security Response Center blog to announce an advisory that affects all currently supported versions of Internet Explorer (versions 6 to 11). The issue is based on a newly discovered exploit that could be used against the web browser. The vulnerability exists in the way that IE accesses an object in memory that has been deleted or has not been properly allocated. Memory may be corrupted in a way that could allow an attacker to execute arbitrary code in the context of the current user. Microsoft is aware of 'limited, targeted attacks' that have used the exploit. IE 10 and 11 are protected against attacks using this exploit if they have their Enhanced Protected Mode turned on. Also, PCs that have either the Enhanced Mitigation Experience Toolkit 4.1 or the EMET 5.0 Technical Preview installed are also secured against this security hole. Microsoft will take the appropriate action to protect its customers by delivering a security update."
Windows XP (Score:5, Interesting)
I wonder if this is going to be one of the first big exploits that will affect Windows XP and leave the masses of users still using it vulnerable.
Re:IE6 (Score:5, Interesting)
You forgot the fact that only IE6, IE7 are available for Windows 2003 Itanium. That's supported until next year.
Windows Server 2008 Itanium only supports up to IE8, which is supported until 2020.
That page is specific to XP. Click the "learn more" link just after the quoted text you pasted.