• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Microsoft patches bad browser bug

M

Medea

Golden Member
Microsoft has released a patch for a bug in the Internet Explorer browser two weeks early to combat a mounting number of attacks made via the loophole.

The software giant usually releases security updates once a month.

However, the growing number of attacks using the loophole forced it to move early.

Cyber criminals are known to be using the bug to install keyloggers, adware and spyware and take over Windows PCs.
. . . .

http://news.bbc.co.uk/1/hi/technology/5384170.stm
 
Anyone have a link to the patch on MS site.

Just ran Update and it did not report anything.

However, using IE7RC1
 
Originally posted by: EagleKeeper
Anyone have a link to the patch on MS site.

Just ran Update and it did not report anything.

However, using IE7RC1
Click to expand...

Same here, must not have a fix for IE7 yet.
 
That's because IE7 is not affected by this. vgx.dll is an OS binary, not an IE binary. If you read the bulletin, you will see that the affected products are operating system versions, not IE versions.

However, Vista has a new version of vgx.dll that is not vulnerable. Since IE7 shares a lot of its codebase with Vista, it uses this new dll for new functionalies. When you install IE7 on XP SP2 or 2003 SP1, the new dll is also installed. Therefore, even though it is not an IE binary, installing IE7 upgrades the OS binary to a non-vulnerable version.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top