Monday, December 31, 2012

Fix it for Security Advisory 2794220 (This Saturday's IE6/7/8 zero-day remote exploit)

Microsoft Security Response Center - Fix it for Security Advisory 2794220 now available

We have updated Security Advisory 2749920 to include the Fix it we discussed in Saturday’s blog post.  This easy, one-click Fix it is available to everyone and prevents the vulnerability from being used for code execution without affecting your ability to browse the Web. Additionally, applying the Fix it does not require a reboot. While we have still observed only a few attempts to exploit this issue, we encourage all customers to apply this Fix it to help protect their systems. [GD: Emphasis added]

We continue to work on a security update to address this issue and we’re closely monitoring the threat landscape. If the situation changes, we will post updates here on the MSRC blog and on Twitter at @MSFTSecResponse

Microsoft Security Advisory: Vulnerability in Internet Explorer could allow information disclosure

Microsoft has released a Microsoft security advisory about this issue for IT professionals. The security advisory contains additional security-related information. To view the security advisory, go to the following Microsoft website:



This should make it easier for you all to walk remote loved ones through if they are stuck using an older browser (i.e. XP users)

No comments: