To print: Click here or Select File and then Print from your browser's menu

This story was printed from silicon.com, located at http://www.silicon.com/

Story URL: http://software.silicon.com/malware/0,3800003100,39366034,00.htm

Microsoft patches critical IE flaw
Malware hole plugged

By Dawn Kawamoto

Published: Thursday 18 December 2008

Microsoft released a critical security patch on Wednesday to plug vulnerabilities in Internet Explorer, a move that comes amid malicious attackers taking advantage of the security flaws.

The patch is designed to prevent attackers from downloading malware onto users' computers if they visit a malicious website, or a legitimate website that has been infected.

This zero-day exploit has been in circulation since the first week of December and potentially could have infected a wide swath of users.

The vulnerabilities are found in not only IE 7, Microsoft's latest browser but also Internet Explorer 5.01, Internet Explorer 6, and Internet Explorer 6 Service Pack 1.