The flaw, which is in the most severe category
of critical, would enable attackers to gain complete control of a
user's computer if the target simply visited a malicious web site.
In addition, the serious nature of the flaw escalated last week with
the news that it was possible to exploit the flaw through HTML emails.
Users could be hacked and lose control of their system simply by
opening an email without an attachment.
When news broke of the possible email exploit, Microsoft issued advice
to users to play it safe by opening emails in text only mode. However,
a third party organization of security experts calling itself ZERT
(Zero Day Emergency Response Team) took it upon itself to issue a
temporary patch until Microsoft issued its official fix.
Meanwhile, Microsoft has been criticised by some, such as security
research group SANS Institute and ZERT, for not getting a patch out
sooner.
Now that a patch is available, users are advised to install it as soon as possible.
The patch is available from Microsoft's security update
site.
Microsoft stung into action releases browser patch
With the news that thousands of web sites are already exploiting an Internet Explorer flaw, Microsoft has been stung into action and rushed out a patch instead of waiting until the next Patch Tuesday on October 10.
RECRUITMENT & RETENTION REPORT 2013
HIRE OR FIRE? BUY OR BUILD2013 is well underway and Australian companies need to know whether they should invest in IT skills training or pay a premium for the people they need.
If you want to know which choices are being made in your sector, what skills are hard to find, which sectors intend to hire or fire and where the IT spend is going, this free report is must have.
Stan Beer
Stan Beer co-founded iTWire in 2005. With 25 years of experience working in Australian technology media, Beer has published articles in most of the IT publications that have mattered, including the AFR, The Australian, SMH, The Age, as well as a multitude of trade publications.
