Microsoft patches IE, Windows.
Published:
24 November 1999 y., Wednesday
Microsoft is scrambling to fix numerous Internet security holes in both the Internet Explorer browser and the Windows operating system. Microsoft expects to release a patch Friday for a problem
with Windows 95 and 98 that could let a malicious Web site operator or sender of HTML email invade a visitor_s or recipient_s computer. In a buffer overrun situation, the attacker floods a field, in this case the address bar in the browser, with more characters than it can hold. Web addresses or local file
addresses that are too long for the address bar can cause Windows to crash and force the characters that didn_t fit into the URL entry field to go into memory, where they may be executed when the computer is restarted. The problem occurs in Windows_ networking software, and an exploit could work with any browser, Microsoft said. Microsoft also released a patch for a bug in the Internet Explorer browser, versions 4.0 and 5.0, that exposes computers to malicious code disguised as common file extensions with suffixes like ".jpg," ".mov" or ".txt" and that get emailed as attachments. The bug takes advantage of an ActiveX control that lets archive files known as "cabinet," or ".cab," files be launched and executed from the user_s machine. Microsoft credited Spanish bug hunter Juan Carlos Garcia Cuartango for discovering the bug, which he originally described as a flaw that made Microsoft_s email management program, Outlook, vulnerable to attack.
Copying, publishing, announcing any information from the News.lt portal without written permission of News.lt editorial office is prohibited.
The most popular articles
Software company announced new structure_ of it_s business.
more »
INFORMATION BUILDERS NEXT month will announce products to extend enterprise data to a variety of portable devices
more »
Waltham-based Lycos Inc. hopes a global deal with the sponsors of the 2000 Summer Olympics will provide a major boost to the company's worldwide visibility.
more »
search.lt presents newest links
more »
Japan is drawing up a five-year plan to surpass the United States as an Internet powerhouse through massive investment in high-speed infrastructure and scuttling laws that inhibit e-commerce.
more »
Traditional retailers Superquinn, Heiton Holdings and Eircom have together taken a 41 per cent stake, valued at euro 4.8 million, in a new Internet shopping venture, Buy4Now.ie.
more »
The federal government introduced the Telecommunications Legislation Amendment Bill 2000 into the senate.
more »
A 23-year-old college student was arrested Thursday and charged with staging one of the biggest financial hoaxes ever on the Internet and pocketing almost $250,000 by issuing fraudulent information on technology company Emulex Corp.
more »
At last, there's a business model for Gnutella's rough-and-tumble world of file-swapping: spam.
more »
Perhaps it is very difficult to find somebody who is absolutely indifferent to the others’ opinion. There are many ways to get known what other people think: referendums may be organized, questionnaires of different kinds may be prepared. Here we introduce another way you may do it.
more »
A new Napster-like program has sprung up online that piggybacks on America Online's popular instant messaging service, limiting swaps of music and other files to close, trusted groups of people.
more »