Microsoft Issues Internet Explorer Security Update [another hacker patch]

http://www.reuters.com/newsArticle.jhtml?type=internetNews&storyID=6970611
i didn't see this posted... hope it's not a dupe.


SEATTLE (Reuters) - A critical flaw in Microsoft Corp.'s (MSFT.O: Quote, Profile, Research) Internet Explorer Web browser could allow a hacker to take control of a computer, the world's largest software maker said on Wednesday.

Microsoft, which issued the security bulletin outside of its regular monthly security update cycle, said that the software flaw can be fixed by downloading a software patch at its Web site www.microsoft.com/security.

Redmond, Washington-based Microsoft said that computer users who have already installed Windows XP Service Pack 2 are already protected from the software flaw, but other users will have to update their software.

<snip> (there's a little more)

on edit:

here's a more harshly worded version of the story:
http://seattlepi.nwsource.com/local/aplocal_story.asp?category=6420&slug=WA%20Microsoft%20Security

Microsoft releases patch to fix severe Internet Explorer flaw


THE ASSOCIATED PRESS


SEATTLE -- Microsoft Corp. released a critical security patch Wednesday to fix a flaw in its Internet Explorer Web browser that could allow an attacker to run malicious software on another person's computer.


The flaw was discovered and made public by security researchers in October. Stephen Toulouse, a security program manager at Microsoft, said the disclosure before a fix could be created did prompt some small-scale attacks, but the repercussions appeared minor.


Microsoft generally encourages security researchers to report such flaws privately, so a patch can be released before the flaw can be exploited by attackers. But some security experts have complained that Microsoft takes too long to release fixes, potentially putting users at risk.

<snip>

I ended up having them send me a CD, which they did free of charge. The package installed without any problems, and I've had no problems with it since then.

It turned out my WinXP was corrupted. I did a repair between the time I ordered the CD and the time I got it, so that might have made the difference. It might solve your problem, too.

When I tried to download SP2, I noticed link to order SP2 on cd. It was free, not even a postage charge. But hey, scre IE, get Firfox or Mozilla.

last time there was a security breach in IE and OE i downloaded the patches but didn't back up the settings before (never thought that they'd send out a potentially fatal error patch to their customers). needless to say i was in hell for a while, ended having to buy a new harddrive to pull off some jumper shenanigans, and reinstall everything. had to get a CD of XP mailed to me, had to bitch out emachines and microsoft, had to get a CD of the patch mailed to me... most irritating.

now that IE is having more problems and offered a new patch, i was very wary. i decided to get firefox and thunderbird and haven't looked back. and to hear that the patch once again can cause 'death spirals' i'm so glad i don't deal with microsoft IE or OE anymore. no more MS for me, too tired, haven't the time, make a better product or leave me alone.

so now i'm strictly buying open source, unix, or apple products. i'm just tired of bad products and wasting my time. life's a lot better this way.

then again I'm a Computer Scientist.

"We’re sorry, but there is no Microsoft.com Web page matching your entry. It is possible that you typed the address incorrectly, or that the page no longer exists. You may wish to try another entry or to use the links below, which we hope will help provide you with the information you need."


I also went to MS update and it stated there was none available.:shrug:



OH DUH I have sp #2. :eyes:

http://www.microsoft.com/technet/security/bulletin/MS04-040.mspx

Internet Explorer 6 Service Pack 1 on Microsoft Windows 2000 Service Pack 3, on Microsoft Windows 2000 Service Pack 4, or on Microsoft Windows XP Service Pack 1: Download the update

or

Internet Explorer 6 Service Pack 1 on Microsoft Windows NT Server 4.0 Service Pack 6a, on Microsoft Windows NT Server 4.0 Terminal Service Edition Service Pack 6, on Microsoft Windows 98, on Microsoft Windows 98 SE, or on Microsoft Windows Me: Download the update



This is NOT on Windows Update yet, but it's a serious flaw that has already been targeted. Please update your computers by downloading and running the update. Windows XP SP2 is not affected.

no problems at all. no pop-ups. no viruses.

Try it!!! You love it.

...Firefox for the web and Thunderbird for e-mail and never a virus.

got info from posts on forums at ms site.
basically changing download settings..
got them somewhere if needed.


:hippie:

I've been using Mozilla now for more than two years. This year the University I work for (I'm departmental computer support) adopted Mozilla as their standard browser. I understand a number of other entities, Universities and Corporations are considering doing the same (or going to Firefox and Thunderbird -the email client-).

...the old Netscape since 1998 when I first went online. And then migrated to the Mozilla browsers and Messenger for email after AOL bought Netscape, and have had nary an email born virus or trojan. I have also used Firefox since it first came out and have espoused the virtues of both of these packages since day one, all the while getting the response of, "What's wrong with AOL?" :eyes: Or getting a, "We use IE at work so it must be good, I don't know how to use Netscape/Mozilla or Messenger for email". :eyes:

The hardest thing about using Mozilla or Firefox is just going and getting it and giving yourself ten minutes to get used to it.