Microsoft ms02-66 fix Q328970 for IE cmd execvulnerabilty

From: Girts Bitenieks (girtsb@multibanka.com)
Date: 11/22/02

  • Next message: Eric Schultze: "Updated version of HFNetChk now available" 
    From: "Girts Bitenieks" <girtsb@multibanka.com>
To: <focus-ms@securityfocus.com>
Date: Fri, 22 Nov 2002 11:09:52 +0200

    Finally microsoft has made fix for HUGE hole in IE., this problem is
    very serious
    It was in security focus archive a log time ago already.

    Six new vulnerabilities, the most serious of which could enable an
    attacker to execute commands on a user's system.
    http://www.microsoft.com/technet/treeview/default.asp?url=/technet/secur
    ity/bulletin/MS02-066.asp

    Patch can be downloaded here:
    http://www.microsoft.com/windows/ie/downloads/critical/q328970/download.
    asp

    ./girtsb.

    Relevant Pages

    • Re: Irfan View WMF Vulnerability Looks You Shouldnt Use It with Unknown Images
      ... so for an official fix you'll have to wait. ... and Microsoft is just letting it sit. ... hole that was being actively exploited from the moment it was announced. ... The hole was actually a design bungle that allowed WMF images to execute ...
      (rec.photo.digital)
    • RE: error 0x800C0005
      ... is there already a solution for this one, cause a have the same probs ... i have searched the hole of microsoft, ... What is this error and how do fix it? ...
      (microsoft.public.windowsupdate)
    • Re: [Full-disclosure] Office 0day
      ... more and continue consulting for microsoft rather than criminal networks. ... to fix the product if it is flawed. ... That is like me trying to argue that after going to a car mechanic, ... "Members of the jury, by keeping quiet about the bug and not shipping a patch, ...
      (Full-Disclosure)
    • Re: spooler not starting
      ... If it still fails to run then maybe the hotfix is ... in that case you will have to call Microsoft for the fix. ... Lexmark tech support to download and install the fix. ...
      (microsoft.public.windowsxp.help_and_support)
    • Re: Microsoft, please, a solution for the STB!!!!!!!
      ... Your statements of impact will be where I push for a fix but I ... and have had no response from Microsoft or from anyone that might be ... MCE 2005 really is an excellent product so far and i would love to ... learn/repeat these codes? ...
      (microsoft.public.windows.mediacenter)