• Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

Another Internet Explorer vulnerability confirmed by Microsoft

Bastieeeh

New Member
Joined
May 31, 2004
Messages
459 (0.09/day)
Likes
5
Location
Germany
Processor Dual Xeon 2.8GHz
Motherboard Asus PCH-DL
Cooling Alphacool NexXxoS XP and Dual Laing
Memory 4GB Samsung
Video Card(s) Sapphire X800XT
Storage 8x Hitachi 7K250 Raid 5 and 2x WD Raptor74GB Raid 0
Display(s) Eizo 21" FlexScan T966 CRT and S1910 LCD
Case Lian Li PC-V2100B
Audio Device(s) Creative SB Audigy 2 ZS
Power Supply Tagan 480W TG480-U01
#1
This time specially prepared animated cursors embedded into e-mails or websites give offenders the ability to execute any code. This issue applies to the Internet Explorer 6 and 7 using Windows 2000 SP4, XP SP2, XP Professional x64, XP 64-Bit for Itanium, 2003 (regardless the SP), 2003 x64 and Vista.
Microsoft responded to this and until they release the corresponding security update suggest this workaround:

As a best practice, users should always exercise extreme caution when opening or viewing unsolicited emails and email attachments from both known and unknown sources.
Heise Security reports that the Security Service Provider Determina told Microsoft about this exposure last year in December already.

Source: Microsoft TechNet
 
Joined
Jan 29, 2006
Messages
9,066 (2.07/day)
Likes
287
Location
My house.
Processor AMD Athlon 64 X2 4800+ Brisbane @ 2.8GHz (224x12.5, 1.425V)
Motherboard Gigabyte sumthin-or-another, it's got an nForce 430
Cooling Dual 120mm case fans front/rear, Arctic Cooling Freezer 64 Pro, Zalman VF-900 on GPU
Memory 2GB G.Skill DDR2 800
Video Card(s) Sapphire X850XT @ 580/600
Storage WD 160 GB SATA hard drive.
Display(s) Hanns G 19" widescreen, 5ms response time, 1440x900
Case Thermaltake Soprano (black with side window).
Audio Device(s) Soundblaster Live! 24 bit (paired with X-530 speakers).
Power Supply ThermalTake 430W TR2
Software XP Home SP2, can't wait for Vista SP1.
#2
I remember this one time that Microsoft said something along the lines of "use Firefox" when faced with one of these problems :roll:.
 

Bastieeeh

New Member
Joined
May 31, 2004
Messages
459 (0.09/day)
Likes
5
Location
Germany
Processor Dual Xeon 2.8GHz
Motherboard Asus PCH-DL
Cooling Alphacool NexXxoS XP and Dual Laing
Memory 4GB Samsung
Video Card(s) Sapphire X800XT
Storage 8x Hitachi 7K250 Raid 5 and 2x WD Raptor74GB Raid 0
Display(s) Eizo 21" FlexScan T966 CRT and S1910 LCD
Case Lian Li PC-V2100B
Audio Device(s) Creative SB Audigy 2 ZS
Power Supply Tagan 480W TG480-U01
#3
Firefox isn't safe either! Under special circumstances it uses the Windows-embedded routines to display animated cursors and if so you are screwed as well!
 

Ketxxx

Heedless Psychic
Joined
Mar 4, 2006
Messages
11,507 (2.65/day)
Likes
562
Location
Kingdom of gods
System Name Prowler. V9.
Processor Intel i5 3570k @ 4.6GHz 1.2v
Motherboard Asrock Z77 Extreme6
Cooling Modded CoolIT ECO ALC, 3x 120mm Coolermaster Sickleflow fans
Memory 2x4GB G.Skill Ripjaws @ 2133MHz 10-10-10-25 1N (T)
Video Card(s) HD7950 Vapor-X @ 1.25GHz 1.05v, 6GHz 1.5v
Storage WD Caviar Black 640GB, 32MB cache, SATA
Display(s) 22" LG Flatron W2242S
Case NZXT Apollo
Audio Device(s) Asus Xonar DX 7.1 PCI-E
Power Supply Corsair HX850w modular
Software Windows 7 x64
#5
hahaha. Another reason IE should just die.
 

WarEagleAU

Bird of Prey
Joined
Jul 9, 2006
Messages
10,809 (2.57/day)
Likes
529
Location
Gurley, AL
System Name Boddha Getta Boddha Getta Bah!
Processor AMD FX 6100 @ 4.432Ghz @1.382
Motherboard ASUS M5A99X EVO AMD 990X AMD SB950
Cooling Custom Water. EK 240MM Kit, Supreme HSF - Runs 35C
Memory 2 x 4GB Corsair Vengeance White LP @ 1.35V
Video Card(s) XFX Radeon HD 6870 980/1100
Storage WD Caviar Black 1.0TB, WD Caviar Green 1.0TB, WD 160GB
Display(s) Asus VH222/S 22: (21.5" Viewable) 1920x1080p HDMI LCD Monitor
Case NZXT White Switch 810
Audio Device(s) Onboard Realtek 5.1
Power Supply NZXT Hale 90 Gold Cert 750W Modular PSU
Software Windows 8.1 Profession 64 Bit
#6
Get a firewall program folks, hardware firewall or not, Zonealarm or something of the like is highly recommended. Then, you can avoid this stuff. I love my Zonealarm security suite.