Microsoft is investigating new reports of a flaw in Internet Explorer. The flaw was originally identified in May. Microsoft recommends IE users to run a scan on their computers using Windows Live Safety Center.


Microsoft is investigating new reports of a flaw in Internet Explorer. The flaw allows attackers to take control of a user’s personal computer.

Microsoft plans to take proper actions to protect IE users. Microsoft plans to provide security updates through monthly releases or an “out-of-cycle” security update.

Microsoft recommends IE users to run a complete PC scan using Windows Live Safety Center to remove malicious software and their variants from the computer.

The flaw was earlier reported in May. But new reports suggest remote code execution .

“An attacker who successfully exploited this vulnerability could take complete control of the affected system. In a Web-based attack scenario, an attacker would host a Web site that exploits this vulnerability. An attacker would have no way to force users to visit a malicious Web site.

Instead, an attacker would have to persuade them to visit the Web site, typically by getting them to click a link that takes them to the attacker’s site.

It could also be possible to display malicious Web content by using banner advertisements or by using other methods to deliver Web content to affected systems.” [Source]

The flaw in Internet Explorer is found on Operating Systems such as Windows 98(First and Second Edition), Windows Millennium, Windows 2000(Service Pack 4) and Windows XP(Service Pack 1,2).

Users of Windows Server 2003 and Windows Server 2003 Service Pack 1 with the Enhanced Security Configuration on, are not affected.

 

 

 

 

Sharing is caring