Wednesday, February 02, 2011

Update Your Internet Explorer Or Change Your Internet Browser or Change Your Operating System

Update Your Internet Explorer Or Change Your Internet Browser or
Change Your Operating System

MA-265.012011 : MyCERT Alert - Critical Vulnerability in Microsoft Windows

http://www.mycert.org.my/en/services/advisories/mycert/2011/main/detail/801/index.html

The vulnerability exists due to the way MHTML interprets
MIME-formatted requests for content blocks within a document. It is
possible under certain conditions for this vulnerability to allow an
attacker to inject a client-side script in the response of a Web
request run in the context of the victim's Internet Explorer. The
script could spoof content, disclose information, or take any action
that the user could take on the affected Web site on behalf of the
targeted user.

An attacker who successfully exploits this vulnerability will be able
to execution of arbitrary attacker-supplied script code in the context
of Internet Explorer. This may allow the attacker to obtain sensitive
information, spoof content, or perform arbitrary actions on a targeted
website in the context of the victim.

*****

Windows users please update your Internet Explorer or use others
alternative like

*****

Mozilla Firefox

http://www.mozilla.com/en-US/firefox/

Google Chrome

http://www.google.com/chrome

More options to Internet Explorer alternative.

Alternative Browser Alliance

http://alternativebrowseralliance.com/browsers.html

Browse Free

http://browsehappy.com/

Viewable With Any Browser

http://www.anybrowser.org/campaign/

Linux your choice of new and future Operating System

http://www.linux.com/distrocentral

References

Microsoft Windows MHTML script injection vulnerability

http://www.kb.cert.org/vuls/id/326549

Microsoft warning over browser security flaw

http://www.bbc.co.uk/news/technology-12325139

2 comments:

Anonymous said...

Terima kasih atas informasi yang besar! Saya tidak akan menemukan ini dinyatakan!.

e1 said...

Sesama kita.