Security Alerts




Cumulative IE Update Corrects a Pile of Memory Corruption Flaws

Severity: High Summary: These vulnerabilities affect: All current versions of Internet Explorer (IE) How an attacker exploits them:  By enticing one of your users to visit a web page containing malicious content Impact:  An attacker can execute code on your user’s computer, often gaining complete control of it What to do:  Install Microsoft’s IE updates immediately, or let Windows Automatic Update do it for you Exposure: As part of today’s Patch Day, Microsoft released a security bulletin  describing 17 new security vulnerabilities affecting Internet Explorer (IE). Microsoft describes all but one of these flaws as “memory corruption” vulnerabilities, but they don’t specify the exact type of memory corruption flaw. Regardless of which type of memory corruption flaws these are, they all share the same scope and impact. If an attacker can lure one of your users to a web page containing maliciously crafted HTML, he could exploit any of these vulnerabilities to execute code on that user’s computer, inheriting that user’s privileges

Source:
Cumulative IE Update Corrects a Pile of Memory Corruption Flaws
July 9, 2013 — Category: Security Alerts