Re: Microsoft Security Bulletin (MS99-043)

From: John Madden (weezat_private)
Date: Thu Nov 18 1999 - 04:32:37 PST

Next message: Jeremy Kothe: "Re: hardcoded windows exploits"

Previous message: Blake Frantz: "Re: Tektronix PhaserLink Webserver Reveals Admin Password"
Maybe in reply to: Aleph One: "Microsoft Security Bulletin (MS99-043)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Patch Available for "Javascript Redirect" Vulnerability
> Originally Posted: October 18, 1999
> Re-released: November 17, 1999
>
> Summary
> =======
> On October 18, 1999, Microsoft released the original version of this
> bulletin, in order to advise  customers of a workaround for a vulnerability
> in Microsoft(r) Internet Explorer. The  vulnerability could allow a
> malicious web site operator to read files on the computer of a user  who
> visited the site, under certain circumstances. Microsoft has completed a
> patch that  completely eliminates the vulnerability, and has re-released
> this bulletin in order to advise  customers of its availability.

Egads, a month for a patch?  Who are they kidding?

Note that IE 5.01 is also out, and probably already contains this patch.

Next message: Jeremy Kothe: "Re: hardcoded windows exploits"
Previous message: Blake Frantz: "Re: Tektronix PhaserLink Webserver Reveals Admin Password"
Maybe in reply to: Aleph One: "Microsoft Security Bulletin (MS99-043)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:13:14 PDT