The Active Network
ActiveMac Anonymous | Create a User | Reviews | News | Forums | Advertise  
 

User Controls

New User

Login

Edit/View My Profile

ActiveMac

Articles

Forums

Links

News

News Search

Reviews

News Centers

Windows/Microsoft

DVD

ActiveHardware

Xbox

MaINTosh

News Search

ANet Chats

The Lobby

Special Events Room

Developer's Lounge

XBox Chat

FAQ's

Windows 98/98 SE

Windows 2000

Windows Me

Windows "Whistler" XP

Windows CE

Internet Explorer 6

Internet Explorer 5

Xbox

DirectX

DVD's

TopTechTips

Registry Tips

Windows 95/98

Windows 2000

Internet Explorer 4

Internet Explorer 5

Windows NT Tips

Program Tips

Easter Eggs

Hardware

DVD

Latest Reviews

Applications

Microsoft Windows XP Professional

Norton SystemWorks 2002

Hardware

Intel Personal Audio Player 3000

Microsoft Wireless IntelliMouse Explorer

Site News/Info

About This Site

Affiliates

ANet Forums

Contact Us

Default Home Page

Link To Us

Links

Member Pages

Site Search

Awards

Credits
©1997/2004, Active Network. All Rights Reserved.
Layout & Design by Designer Dream. Content written by the Active Network team. Please click here for full terms of use and restrictions or read our Privacy Statement.

  *  

  Microsoft Security Bulletin MS02-015: 28 March 2002 Cumulative Patch for Internet Explorer
Time: 19:30 EST/00:30 GMT | News Source: Microsoft TechNet Security | Posted By: Julien Jay

This is a cumulative patch that includes the functionality of all previously released patches for IE 5.01, 5.5 and IE 6. In addition, it eliminates the following two newly discovered vulnerabilities:

  • A vulnerability in the zone determination function that could allow a script embedded in a cookie to be run in the Local Computer zone. While HTML scripts can be stored in cookies, they should be handled in the same zone as the hosting site associated with them, in most cases the Internet zone. An attacker could place script in a cookie that would be saved to the user’s hard disk. When the cookie was opened by the site the script would then run in the Local Computer zone, allowing it to run with fewer restrictions than it would otherwise have.
  • A vulnerability in the handling of object tags that could allow an attacker to invoke an executable already present on the user’s machine. A malicious user could create HTML web page that includes this object tag and cause a local program to run on the victim’s machine.

Patch availability:

http://www.microsoft.com/windows/ie/downloads/critical/Q319182/default.asp
Write Comment
Return to News

  Displaying 301 through 301 of 301
Prev | First 		  The time now is 11:44:16 AM ET.
Any comment problems? E-mail us
#301 By 4240821 (62.76.153.72) at 11/24/2024 10:52:12 AM
https://justpaste.me/BdKG5
https://justpaste.me/BhWs3
https://justpaste.me/Bruf1
https://justpaste.me/CTA32
https://justpaste.me/CTWh1
https://justpaste.me/CL9j2
https://justpaste.me/Bp5B
https://justpaste.me/CIFX2
https://justpaste.me/Bgex5
https://justpaste.me/CCmG2

Write Comment
Return to News
  Displaying 301 through 301 of 301
Prev | First 		  The time now is 11:44:16 AM ET.
Any comment problems? E-mail us
User name and password:

 

   *  
  *   *