Make Homepage | Add To Favorites | Print Page | Submit News | Feedback | Contact | 

Your Technical Computer Information Resource!  
     
 
Keep TACKtech.com free by purchasing something from our sponsors.
Make a financial contribution
  Technical Updates @ TACKtech Corp.  

06.04.2003 - MS03-020: June 2003 Cumulative Patch for Internet Explorer (818529)



View InternetExplorer related news. This is a cumulative patch that includes the functionality of all previously released patches for Internet Explorer 5.01, 5.5 and 6.0. In addition, it eliminates two newly discovered vulnerabilities:

A buffer overrun vulnerability that occurs because Internet Explorer does not properly determine an object type returned from a web server. It could be possible for an attacker who exploited this vulnerability to run arbitrary code on a user's system. If a user visited an attacker's website, it would be possible for the attacker to exploit this vulnerability without any other user action. An attacker could also craft an HTML email that attempted to exploit this vulnerability.

A flaw that results because Internet Explorer does not implement an appropriate block on a file download dialog box. It could be possible for an attacker to exploit this vulnerability to run arbitrary code on a user's system. If a user simply visited an attacker's website, it would be possible for the attacker to exploit this vulnerability without any other user action. An attacker could also craft an HTML email that attempted to exploit this vulnerability. In order to exploit these flaws, the attacker would have to create a specially formed HTML email and send it to the user. Alternatively an attacker would have to host a malicious web site that contained a web page designed to exploit these vulnerabilities. The attacker would then have to persuade a user to visit that site.

As with the previous Internet Explorer cumulative patches released with bulletins MS03-004 and MS03-015, this cumulative patch will cause window.showHelp( ) to cease to function if you have not applied the HTML Help update. If you have installed the updated HTML Help control from Knowledge Base article 811630, you will still be able to use HTML Help functionality after applying this patch.

- Download June 2003, Cumulative Patch
- Download June 2003, Cumulative Patch (from WindowsUpdate)
- View Microsoft Security Bulletin MS03-020
- View Microsoft End User Security Bulletin
- View Microsoft Knowledge Base Article - 818529
- Visit Microsoft Corporation

NID: 822 / Submitted by: Zero_Tolerance
Categories: Freeware, Internet Applications, Internet Browsers, Microsoft, Patches and Updates
Most recent InternetExplorer related news.
Microsoft Internet Explorer 11 for Windows 7 (32/64 bit)
Microsoft Internet Explorer 10 for Windows 7 (32/64 bit)
Microsoft Internet Explorer 10 Pre-release for Windows 7 (32/64 bit)
Microsoft Internet Explorer 9 Final
Microsoft Internet Explorer 9 Release Candidate
View archive of InternetExplorer related news.

Visit the TACKtech Shop
  Popular Tech News  
  Most Viewed News  
  Top Affiliates  
........