Heh, yes a very bad security problem...the problem is that the patch doesn't totally fix the problem. Also the patch does not fix Outlook Express either. See Bugtraq posting today...
jon ----- Original Message ----- From: "Justin Hansen" <[EMAIL PROTECTED]> To: "CF-Talk" <[EMAIL PROTECTED]> Sent: Monday, December 17, 2001 2:50 PM Subject: OT: New IE Hole Info! > FYI...... > > IE 5.5 and 6 users may want to install this new patch IMMEDIATELY. > According to Microsoft > (http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security > /bulletin/MS01-058.asp) this fixes a critical hole in IE that may allow an > attacker to run any code they wish by faking out IE into thinking an > executable is a benign object (like an image). > > > Justin Hansen - [EMAIL PROTECTED] > Project Leader / Web Application Developer > Interactive Business Solutions, Inc > 816-221-5200 ext. 1305 > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Get the mailserver that powers this list at http://www.coolfusion.com FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
