[Dshield] IE 0day
mjost at cox.net
Tue Nov 22 14:09:56 GMT 2005
Microsoft has a fix at http://support.microsoft.com/?scid=kb;en-us;888240
That patches this issue of add on's.
From: David Taylor [mailto:ltr at isc.upenn.edu]
Sent: Monday, November 21, 2005 9:27 AM
To: 'General DShield Discussion List'
Subject: Re: [Dshield] IE 0day
I haven't tested it but there is more information on the discoverer's site.
4. TEMPORARY SOLUTION
Until a patch is developed, users are advised to disable active scripting
for non-trusted sites.
David Taylor //Sr. Information Security Specialist
University of Pennsylvania Information Security
Philadelphia PA USA
SANS - The Twenty Most Critical Internet Security Vulnerabilities
SANS - Internet Storm Center
From: list-bounces at lists.dshield.org [mailto:list-bounces at lists.dshield.org]
On Behalf Of Faber, Sidney
Sent: Monday, November 21, 2005 10:12 AM
To: list at lists.dshield.org
Subject: [Dshield] IE 0day
Has anyone been able to confirm any info about this IE remote code
execution 0day reported by FrSIRT? Can anyone recommend a reasonable
One of these IE 0days back in 2004 ushered in the new era of spyware
infestation, I hope it doesn't happen again...
sfaber at federatedinv.com
Communication systems of Federated Investors, Inc. and its affiliates are
for Federated business use only and are the property of Federated.
Federated reserves the right to review all messages on its systems for any
purpose at any time and without any prior notification. Information on the
systems may be reviewed by supervisors and senior management, provided by
Federated to regulators or law enforcement agencies, or used for other
purposes consistent with Federated's business interests.
The contents of this message may be confidential and legally privileged. If
you have received this message in error, please notify us immediately by
e-mail at notify at federatedinv.com and then delete this message from your
system. Please do not copy it or use it for any purposes, or disclose its
contents to any other person. To do so could violate state and Federal
privacy laws. Thank you for your cooperation.
Using .Net? Need to know more about .Net Security?
send all posts to list at lists.dshield.org
To change your subscription options (or unsubscribe), see:
More information about the list