Microsoft Releases Security Bulletin MS08-078
Microsoft has released Microsoft Security Bulletin MS08-078 to address a vulnerability in Internet Explorer. This vulnerability is due to an invalid pointer reference in the data binding function. By convincing a user to view a specially crafted document that performs data binding (e.g., a web page, email message, or attachment), a remote, unauthenticated attacker may be able to execute arbitrary code.
Users should review Microsoft Security Bulletin MS08-078 and apply the update or workarounds listed in the bulletin to help mitigate the risks. Users may also want to consider implementing the best security practices listed in the Securing Your Web Browser document to strengthen their web browsers against future vulnerabilities.
Additional information regarding this vulnerability can be found in the Vulnerability Notes Database.
The United States Computer Emergency Readiness Team (US-CERT) is a partnership between the Department of Homeland Security and the public and private sectors. Established in 2003 to protect the nation’s Internet infrastructure, US-CERT coordinates defense against and responses to cyber attacks across the nation.
Leave a comment
New Guidance On Business Continuity Is Now Available… An article review. As part of a Read more
Another awareness poster for YOUR customers (and users). Now that we have our own em Read more
Please know that the boilerplates we provide as part of our speaking engagements are Read more
Despite advances in automation, millions of additional people are still needed… An ar Read more