Microsoft Going Critical on Tuesday - WinPlanet Windows Software Reviews

You are in the: Small Business Computing Channel

ť ECommerce-Guide | Small Business Computing | Webopedia | WinPlanet |Refer-It

Power Search | Tips

Browsers

Chat / Conferencing

Desktop Utilities

Development

Internet Apps

Multimedia

OS Service Packs

Productivity Tools

Enter a keyword

Newsletters offering Windows news, articles, tips and reviews.

Partners & Affiliates

Small Business Computing

Ecommerce Guide

Webopedia

WinPlanet

WinPlanet / News

Download of the day

• Internet Explorer 8

Most Popular Software Downloads

• Opera

• Internet Explorer 7

• QuickTime for Windows

• Winamp

• Mozilla Firefox 3

• Ad-Aware 2008 Free

• Adobe Flash Player

• Paint Shop Pro

• Adobe Shockwave Player

• AVG Anti-Virus Free

• 7-Zip

Most Popular Software Articles

• Windows Vista Tips & Tricks, Part 1

• Windows Vista: Worthy of the Hype?

• Windows Wireless Zero Configuration: Five Steps to Sanity

Software Reviews

Microsoft Going Critical on Tuesday
Two Critically Rated Security Patches Expected
Sean Michael Kerner

Microsoft is getting ready for its final patch Tuesday of the year with two critically rated fixes up its sleeve.

The company's December Security Bulletin Advance Notification does not provide any additional details about the two issues that will be patched this coming Tuesday.

The critical patch is expected to address an exploitable flaw in Internet Explorer (IE).

The flaw involves a potential cross-scripting issue that could trigger a Denial-of-Service (DoS) (define) attack by way of a JavaScript onload event that calls the window function.

The flaw itself is not new, having already been reported some six months ago. Proof-of-exploit code emerged in November from security firm Computer Terrorism, which proved that the vulnerability could indeed be exploited.

Microsoft issued a security advisory soon thereafter to inform end users about the issue.

November's patch Tuesday also included a patch that Microsoft had labeled "critical" as well. That patch fixed a flaw in the Windows rendering engine.

News courtesy of internetnews.com

December 9, 2005

Download Internet Explorer Security Patches Now!

View All Microsoft Service & Security Releases

Contents:
1. Two Critically Rated Security Patches Expected

Additional Articles:

Malware Hacker Attack Linked to Spammers

Malware Attack Thwarted, But Danger Lurks

US Gov: Beware of IE

Microsoft Issues Security Update for Trojan

Another IE Flaw in the Wild?

Microsoft Faces Angry IE Users' Questions

Microsoft Releases New Tool to Zap Download.Ject

Microsoft: Out-of-Cycle Security Patch Coming

'Critical' IE Patch Released

MS Patch Barrage Comes with IE Fix

'Drag-and-Drop' IE Flaw Persists

MS Patches IFRAME Vulnerability Out of Cycle

Microsoft Patches Three Holes, Offers Removal Tool

Microsoft Patch Day Plugs 3

Microsoft Patches 3 Critical Flaws

IE Workarounds for New Zero Day Exploit

Unpatched IE Flaw Now Exploitable

Microsoft Crafts Critical Patches

Microsoft Warns on Windows, IE Flaws

Microsoft Patches IE, Windows, Office

Microsoft's Patch of a Patch Will Be Late

Latest IE Zero Day Has XML Designs

IE Vulnerability Spreads to Email

IE VML Exploit Growing in Severity

VML Exploit Patched, Questions Remain

PowerPoint, IE Hit by New Zero-Day Flaws

Search:

Jupitermedia Corporation has two divisions: Jupiterimages and JupiterOnlineMedia

Jupitermedia Corporate Info

Legal Notices, Licensing, Reprints, & Permissions, Privacy Policy.

Advertise | Newsletters | Tech Jobs | Shopping | E-mail Offers

Solutions

Whitepapers and eBooks
Adobe Acrobat Connect Pro: Web Conferencing and eLearning Whitepapers Microsoft Article: Will Hyper-V Make VMware This Decade's Netscape? Avaya Article: Avaya AE Services Provide Rapid Telephony Integration with Facebook Intel Go Parallel Article: Getting Started with TBB on Windows Microsoft Article: 7.0, Microsoft's Lucky Version?		Intel Go Parallel Article: Intel Threading Tools and OpenMP HP eBook: Storage Networking , Part 1 Avaya Article: Speech Sandbox: Application Simulation in Avaya Dialog Designer MORE WHITEPAPERS, EBOOKS, AND ARTICLES

Webcasts
HP Video: StorageWorks EVA4400 and Oracle HP Webcast: Storage Is Changing Fast - Be Ready or Be Left Behind		MORE WEBCASTS, PODCASTS, AND VIDEOS

Downloads and eKits
30-Day Trial: SPAMfighter Exchange Module Red Gate Download: SQL Toolbelt and free High-Performance SQL Code eBook		Iron Speed Designer Application Generator MORE DOWNLOADS, EKITS, AND FREE TRIALS

Tutorials and Demos
Featured Algorithm: Intel Threading Building Blocks - parallel_reduce Silverlight 2 App and Walkthrough: Leverage Silverlight 2 with SQL Server and XML		HP Demo: StorageWorks EVA4400 MORE TUTORIALS, DEMOS AND STEP-BY-STEP GUIDES