1
   

Update IE on Wednesday - Critical

 
 
Reply Tue 11 Jan, 2005 12:26 am
A serious exploit for Internet Explorer is in the wild. It's the worst I have seen. I have heard that a patch is coming on Wednesday at the latest.

Regardless of what browser you use (and if you have a windows box you have IE, whether you think so or not) run windows updates on Wednesday (or earlier).

Changing your IE security settings for the Internet Zone to high or disabling Active X will foil the exploit until you can patch.

As a side note some relatively serious (less so than the above) Mozilla and Firefox exploits were released recently so patch your software people.
  • Topic Stats
  • Top Replies
  • Link to this Topic
Type: Discussion • Score: 1 • Views: 2,820 • Replies: 43
No top replies

 
husker
 
  1  
Reply Tue 11 Jan, 2005 12:41 am
Re: Update IE on Wednesday - Critical
So I guess I'm up a creek cause I didn't do SP2 yet, just a little nervous about that.
0 Replies
 
husker
 
  1  
Reply Tue 11 Jan, 2005 12:44 am
just noticed quick reply does not work well with security on high
0 Replies
 
Craven de Kere
 
  1  
Reply Tue 11 Jan, 2005 01:00 am
This exploit affects post-sp2 computers. But sp2 fixes a lot of things that are as important if not more.

With security on high lots of functionality is reduced, this is usually the exchange you get for security.

If you just disable active x you can protect against this exploit with much less reduction of functionality.
0 Replies
 
dlowan
 
  1  
Reply Tue 11 Jan, 2005 01:19 am
Thank you for the warning.
0 Replies
 
ehBeth
 
  1  
Reply Tue 11 Jan, 2005 11:57 am
I'll go kiss active-X goodbye tonight.
0 Replies
 
Magus
 
  1  
Reply Tue 11 Jan, 2005 03:44 pm
Is this -ALERT- Color-coded?

(Is it a "Level Orange" or a "Level Red"?)
0 Replies
 
Craven de Kere
 
  1  
Reply Tue 11 Jan, 2005 04:29 pm
In any coding system it should be critical/red whatnot. It's one of the most dangerous I have seen.

The patch is already out. Run windows updates.
0 Replies
 
ehBeth
 
  1  
Reply Tue 11 Jan, 2005 07:17 pm
Just did updates.
0 Replies
 
cjhsa
 
  1  
Reply Tue 11 Jan, 2005 07:31 pm
I ran updates, but only SP2 was advertised. I'm not really ready for SP2 here. How do I just turn off ActiveX?
0 Replies
 
Seed
 
  1  
Reply Tue 11 Jan, 2005 08:06 pm
how do i start windows updates?
0 Replies
 
Monger
 
  1  
Reply Tue 11 Jan, 2005 08:17 pm
seed wrote:
how do i start windows updates?

Go here: http://windowsupdate.microsoft.com

cjhsa wrote:
How do I just turn off ActiveX?

Tools >> Internet Options >> Security tab >> (make sure the Internet zone is selected) >> Custom Level button >> set "ActiveX controls and plug-ins > Run ActiveX controls and plug-ins" to "Disable".

That's usually not a good idea though, as e.g. Macromedia Flash & Adobe Reader run in IE as ActiveX plug-ins & the Windows Update website requires ActiveX controls.
0 Replies
 
cjhsa
 
  1  
Reply Tue 11 Jan, 2005 08:34 pm
So, what do I do then?
0 Replies
 
Seed
 
  1  
Reply Tue 11 Jan, 2005 08:38 pm
does everyone need to turn off active x? what is going on? i really didnt understand the first post.. can i get a dumbed down version?
0 Replies
 
Monger
 
  1  
Reply Tue 11 Jan, 2005 08:39 pm
cjhsa wrote:
So, what do I do then?


IMHO, install SP2.

(Based on personal experience, I see no reason not to.)
0 Replies
 
cjhsa
 
  1  
Reply Tue 11 Jan, 2005 08:41 pm
Well, I followed the link above and found three critical updates, one created today, so I downloaded and installed those, but not SP2.
0 Replies
 
Monger
 
  1  
Reply Tue 11 Jan, 2005 08:49 pm
Seed wrote:
does everyone need to turn off active x? what is going on? i really didnt understand the first post.. can i get a dumbed down version?

Go here: http://windowsupdate.microsoft.com (Wink) ...& install all critical updates listed.
0 Replies
 
cjhsa
 
  1  
Reply Tue 11 Jan, 2005 08:51 pm
Odd because if I double click on the Windows Update icon in the tray, it only shows SP2 as needing to be installed. The three critical updates went in just fine without SP2, but it did take a long time to reboot - slow going down with lots of disk activity.

So, am I good to go?
0 Replies
 
dlowan
 
  1  
Reply Tue 11 Jan, 2005 08:53 pm
Any news on what it DOES?

I am starting to expect to be disembowelled by rabid pixels as soon as I turn my home computer on when I get home!!

Or have things waiting for me - like that murderous little fetish doll that Karen Black unleashed.......
0 Replies
 
Seed
 
  1  
Reply Tue 11 Jan, 2005 08:54 pm
this is all its telling me to update: Microsoft .NET Framework 1.1 Service Pack 1
0 Replies
 
 

Related Topics

Clone of Micosoft Office - Question by Advocate
Do You Turn Off Your Computer at Night? - Discussion by Phoenix32890
The "Death" of the Computer Mouse - Discussion by Phoenix32890
Windows 10... - Discussion by Region Philbis
Surface Pro 3: What do you think? - Question by neologist
Windows 8 tips thread - Discussion by Wilso
GOOGLE CHROME - Question by Setanta
.Net and Firefox... - Discussion by gungasnake
Hacking a computer and remote access - Discussion by trying2learn
 
  1. Forums
  2. » Update IE on Wednesday - Critical
Copyright © 2025 MadLab, LLC :: Terms of Service :: Privacy Policy :: Page generated in 0.03 seconds on 07/04/2025 at 11:23:48