Unpatched Vulnerability in IE6, 7, and 8

Microsoft has acknowlegded that there is an unpatched security vulnerability affecting Internet Explorer versions 6, 7, and 8. The problem has to do with how IE processes CSS. Exploit code is publicly available. Until Microsoft makes a patch available, there is little else to do except press your IPS vendors for a filter and your antivirus vendors for detection.

References:
http://www.microsoft.com/technet/security/advisory/2488013.mspx
http://blogs.technet.com/b/msrc/archive/2010/12/22/microsoft-releases-security-advisory-2488013.aspx

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter: twitter.com/patchmanagement

Share

Leave a Reply