14 Dec 2005
Microsoft issues fix for critical security vulnerability in Internet Explorer
|
| Microsoft has described the vulnerability as
critical. |
As part of its monthly patch distribution, Microsoft has issued
a critical security update for users of Microsoft Internet
Explorer. The critical patch address a remote code execution flaw
which could be exploited by hackers to break into vulnerable
computers.
"This flaw in Microsoft's software could allow hackers to run
malicious code on an innocent user's computer, potentially giving
hackers access to the computer in order to gain access and steal
information. It's critical that businesses and home users protect
against flaws like this as a matter of priority," said Graham Cluley, senior
technology consultant for Sophos. "In the past, malicious attacks
have followed very quickly after Microsoft's announcement of the
problem, so it's essential that people take action now to ensure
their PCs are properly defended."
Microsoft has also released a patch to address a privilege
execution vulnerability in Windows 2000.
Home users of Microsoft Windows can visit update.microsoft.com to have their systems scanned for
critical Microsoft security vulnerabilities.
Sophos suggests that every IT manager responsible for security
should consider subscribing to vulnerability mailing lists such as
that operated by Microsoft at www.microsoft.com/technet/security/bulletin/notify.mspx.
Sophos continues to recommend companies protect their desktops
and servers with automatically updated
anti-virus protection.
About Sophos
More than 100 million users in 150 countries rely on Sophos as the best protection against complex threats and data loss. Sophos is committed to providing security and data protection solutions that are simple to manage, deploy and use and that deliver the industry's lowest total cost of ownership. Sophos offers award-winning encryption, endpoint security, web, email, and network access control solutions backed by SophosLabs - a global network of threat intelligence centers. With more than two decades of experience, Sophos is regarded as a leader in security and data protection by top analyst firms and has received many industry awards.
Sophos is headquartered in Boston, US and Oxford, UK. More information is available at www.sophos.com.