Microsoft patches IE, Windows.
Published:
24 November 1999 y., Wednesday
Microsoft is scrambling to fix numerous Internet security holes in both the Internet Explorer browser and the Windows operating system. Microsoft expects to release a patch Friday for a problem
with Windows 95 and 98 that could let a malicious Web site operator or sender of HTML email invade a visitor_s or recipient_s computer. In a buffer overrun situation, the attacker floods a field, in this case the address bar in the browser, with more characters than it can hold. Web addresses or local file
addresses that are too long for the address bar can cause Windows to crash and force the characters that didn_t fit into the URL entry field to go into memory, where they may be executed when the computer is restarted. The problem occurs in Windows_ networking software, and an exploit could work with any browser, Microsoft said. Microsoft also released a patch for a bug in the Internet Explorer browser, versions 4.0 and 5.0, that exposes computers to malicious code disguised as common file extensions with suffixes like ".jpg," ".mov" or ".txt" and that get emailed as attachments. The bug takes advantage of an ActiveX control that lets archive files known as "cabinet," or ".cab," files be launched and executed from the user_s machine. Microsoft credited Spanish bug hunter Juan Carlos Garcia Cuartango for discovering the bug, which he originally described as a flaw that made Microsoft_s email management program, Outlook, vulnerable to attack.
Copying, publishing, announcing any information from the News.lt portal without written permission of News.lt editorial office is prohibited.
The most popular articles
Software company announced new structure_ of it_s business.
more »
A growing number of online companies are ambushing competitors through software that puts ads where marketers want them most--in front of customers visiting rival Web sites.
more »
Internet Explorer 6 is due to go gold next week and will be released on August 15 as a standalone program, according to software development sites.
more »
Another .NET enabled product has left the stables at Redmond.
more »
The worm has kept Josef Chamberlin busy at the keyboard, operating on only snippets of sleep, many recent days and nights.
more »
If you need to reach someone at his or her office, the phone--we now know--is not the best way to do it. E-mail is easier and more popular, as evidenced by the deluge of messages with which cube dwellers are greeted each morning as they log onto their com
more »
Over a third of European Internet users are ready to buy a car on the Internet, according to a new study.
more »
Sweden must maintain the pace of its UMTS network rollout
more »
While the Federal Bureau of Investigation and network security advocates are busy mobilizing IT managers around the country for the upcoming outbreak of the Code Red Worm, one resourceful Web site operator from the Utrecht in the Netherlands stands to mak
more »
The fast-spreading ``Code Red'' Internet worm, which disrupted U.S. government Web sites last week, is likely to start multiplying again on Tuesday and could slow down the Internet, officials said on Monday.
more »
search.lt presents newest links
more »