Microsoft patches IE, Windows.
Published:
24 November 1999 y., Wednesday
Microsoft is scrambling to fix numerous Internet security holes in both the Internet Explorer browser and the Windows operating system. Microsoft expects to release a patch Friday for a problem
with Windows 95 and 98 that could let a malicious Web site operator or sender of HTML email invade a visitor_s or recipient_s computer. In a buffer overrun situation, the attacker floods a field, in this case the address bar in the browser, with more characters than it can hold. Web addresses or local file
addresses that are too long for the address bar can cause Windows to crash and force the characters that didn_t fit into the URL entry field to go into memory, where they may be executed when the computer is restarted. The problem occurs in Windows_ networking software, and an exploit could work with any browser, Microsoft said. Microsoft also released a patch for a bug in the Internet Explorer browser, versions 4.0 and 5.0, that exposes computers to malicious code disguised as common file extensions with suffixes like ".jpg," ".mov" or ".txt" and that get emailed as attachments. The bug takes advantage of an ActiveX control that lets archive files known as "cabinet," or ".cab," files be launched and executed from the user_s machine. Microsoft credited Spanish bug hunter Juan Carlos Garcia Cuartango for discovering the bug, which he originally described as a flaw that made Microsoft_s email management program, Outlook, vulnerable to attack.
Copying, publishing, announcing any information from the News.lt portal without written permission of News.lt editorial office is prohibited.
The most popular articles
Software company announced new structure_ of it_s business.
more »
Just a few weeks ago, the world's tiniest video camera was as small as a grain of rice. Today, the world's NanoEst camera is even smaller.
more »
During the experiment two research groups managed to overcome a symbolic 100 TB/s optical fiber data transmission speed limit.
more »
Apple’s long–awaited online storage service for iTunes could be named iCloud, if only rumours are to be believed.
more »
The founders of video-sharing site YouTube have bought bookmarking service Delicious from Yahoo.
more »
The successful raid by hackers on Sony’s PlayStation Network is already being ranked among the biggest data thefts of all time.
more »
Apple has denied that its iPhones and 3G iPads have been secretly recording their owners' movements.
more »
Customers who have waited nearly 10 months for the white version of the iPhone 4 won’t have to wait much longer. The Great White iPhone 4 is finally here.
more »
Researchers at Georgia Tech University are teaching a robot the basics of dialogue. Named "Simon", the robot has already been taught how to attract a person's attention but eventually, it's hoped he'll be able to interact and converse with humans in daily life.
more »
3D? Terribly lame when it's tossed into devices as a bullet point feature. Trimensional for iPhone takes a picture of your face and maps your mug in a 3D model.
more »
The European Union is to investigate whether internet service providers (ISPs) are providing fair access to online services.
more »