Microsoft (Quote, Chart) confirmed it's investigating three reported security vulnerabilities in its Internet Explorer browser. But a spokesperson denied there are plans to deliver patches outside of the normal monthly cycle. In a report released on Nov. 2 and updated on Nov. 18, security firm Secunia warned of a vulnerability is caused by a boundary error in the handling of certain attributes in the IFRAME, FRAME, and EMBED HTML tags. The flaw in Internet Explorer 6.0 allows remote attackers to execute arbitrary code.
|