More Microsoft Patch problems MS06-042



This has been one of the “problem child” patches this time around and it looks as though it’s worse than initially thought. Apparently, instead of “just” crashing IE SP1 when viewing compressed http 1.1 web pages on WinXP SP1 or Windows 2000 SP4…. as stated in Microsoft’s bulletins, this could also lead to a buffer overflow allowing for code execution. Microsoft is saying that they are not aware of that vulnerability being exploited or impacting customers at this time. The issue that was originally reported is detailed in this knowledge base article.


Sans now has a brief on this as well. It should be noted that exploits may be available soon.

–Update 8/24/06–

Microsoft has re-released the patch now, the Microsoft bulletin can be found here.

Brian Krebs at the Security Fix has the story as well and a good brief on the history of this one. He also points out that this is for IE6 SP1 only.

Related Posts

Blog Traffic Exchange Related Posts
  • Powerpoint vulnerability (August 2006) I'm having to make sure I put the date in the title of these posts now.... over the weekend there were rumors of a new powerpoint vulnerability. Sans had an early notice of some trojan droppers using powerpoint files. And by the 20th (Sunday) it was being called a 0-day.......
  • Microsoft Support extensions for XP Good news for Windows XP users (especially XP Home). Microsoft has extended the support period for XP Home and Pro. Originally, security patch related support was expected to end December 31st of this year. According to the article for XP Home... So for the consumer versions of Windows XP, mainstream......
  • Microsoft Updates Malicious software removal tool for zotob I just read that Microsoft has released an update to the Malicious software removal tool. The updated version is not yet available at Windows or Microsoft update, but from Microsoft's download center. It should be able to deal with the following new bugs... * Zotob.A * Zotob.B * Zotob.C *......
Blog Traffic Exchange Related Websites
  • What is a Secured Credit Card? If you have poor credit, or less than perfect credit, you may be excited by offers in the mail for credit cards that appear to be designed specifically for you. They promise no credit checks, excellent interest rates, no annual fees, and if you have bad credit, it's ok! But......
  • Internet Explorer 8 blocks a billion malware downloads James Pratt, Microsoft’s Product Manager stated in a blog post , “The SmartScreen team just informed me that we’ve reached an amazing milestone – Internet Explorer 8 has blocked 1 billion attempts to download malware!” The SmartScreen Filter evaluates URLs and their associated servers. If the software recognizes a server......
  • Law Enforcement Badges and Memorabilia Different people have different interests when it comes to collecting memorabilia and other collectibles. For example, some people collect law enforcement badges and other law enforcement memorabilia. The reasons for such a collection may stem from having a history working with law enforcement or possibly having an ancestor that was......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site