Re: Microsoft Internet Explorer Malformed IFRAME Remote Buffer Overflo

From: Altrüs (altrus_at_zonetechs.com)
Date: 11/26/04

Next message: Val T: "Re: IE stopped spawning windows properly"
Previous message: Altrüs: "Re: IE Getting Refreshed On Its Own!!"
In reply to: Amanda George: "Microsoft Internet Explorer Malformed IFRAME Remote Buffer Overflo"
Next in thread: Amanda George: "Re: Microsoft Internet Explorer Malformed IFRAME Remote Buffer Ove"
Reply: Amanda George: "Re: Microsoft Internet Explorer Malformed IFRAME Remote Buffer Ove"
Messages sorted by: [ date ] [ thread ]

Date: Thu, 25 Nov 2004 21:55:53 -0500

Hi,

The following may be of limited use to you:

--
Although unconfirmed, it is reported that Microsoft Internet Explorer 6 Service
Pack 2 is not prone to this vulnerability. If applicable, customers are advised
to apply this service pack in order to mitigate the risk of exposure.
Currently we are not aware of any vendor-supplied patches for this issue. If you
feel we are in error or are aware of more recent information, please mail us at:
vuldb@securityfocus.com <mailto:vuldb@securityfocus.com>.
--
http://www.securityfocus.com/bid/11515/solution/
Perhaps that may help,
Best regards
Altrus
"Amanda George" <AmandaGeorge@discussions.microsoft.com> wrote in message
news:9434B7FF-A6FC-409F-A18B-3E5525BE81E9@microsoft.com...
: Is there a security patch available for download for this vulnerability:
: "Microsoft Internet Explorer Malformed IFRAME Remote Buffer Overflow
: Vulnerability"  This vulnerability is exploited by the Trojan.Vundo virus,
: which was discovered on Nov. 20th.  Please advise.

Next message: Val T: "Re: IE stopped spawning windows properly"
Previous message: Altrüs: "Re: IE Getting Refreshed On Its Own!!"
In reply to: Amanda George: "Microsoft Internet Explorer Malformed IFRAME Remote Buffer Overflo"
Next in thread: Amanda George: "Re: Microsoft Internet Explorer Malformed IFRAME Remote Buffer Ove"
Reply: Amanda George: "Re: Microsoft Internet Explorer Malformed IFRAME Remote Buffer Ove"
Messages sorted by: [ date ] [ thread ]

Relevant Pages

Alert:Microsoft Security Bulletin - MS02-009
... Customers using Microsoft® Internet Explorer. ... Impact of vulnerability: Information Disclosure ... Microsoft Internet Explorer 5.5 ... The vulnerability could only be used to view files. ...
(NT-Bugtraq)
Help with MS07-042 - will not seem to install on this one laptop
... automatic security update for Microsoft XML Core Services 4.0 Service ... Pack 2. ... vulnerability, however this one remains. ...
(Security-Basics)
SecurityFocus Microsoft Newsletter #163
... MICROSOFT VULNERABILITY SUMMARY ... Bugzilla Javascript Buglists Remote Information Disclosure V... ... Microsoft Internet Explorer DHTML Drag and Drop Local File S... ... Microsoft Windows Workstation Service Remote Buffer Overflow... ...
(Focus-Microsoft)
SecurityFocus Microsoft Newsletter #165
... Tenable Security ... distribute, manage, and communicate vulnerability and intrusion detection ... Microsoft Internet Explorer MHTML Forced File Execution Vuln... ...
(Focus-Microsoft)
SecurityFocus Microsoft Newsletter #301
... AGEphone SIP Packet Handling Buffer Overflow Vulnerability ... Microsoft Internet Explorer NMSA.ASFSourceMediaDescription Stack Overflow Vulnerability ... Microsoft Windows is reportedly prone to a remote denial-of-service vulnerability. ...
(Focus-Microsoft)