Alert (TA10-089A)
Microsoft Internet Explorer Vulnerabilities
Systems Affected
- Microsoft Internet Explorer
Overview
Microsoft has released out-of-band updates to address critical vulnerabilities in Internet Explorer.
Description
Microsoft has released updates for multiple vulnerabilities in Internet Explorer, including the vulnerability detailed in Microsoft Security Advisory (981374) and US-CERT Vulnerability Note VU#744549.
Impact
By convincing a user to view a specially crafted HTML document or Microsoft Office document, an attacker may be able to execute arbitrary code with the privileges of the user.
Solution
Apply updates
Microsoft has released updates to address these vulnerabilities. Please see Microsoft Security Bulletin MS10-018 for more information.
Apply workarounds
Microsoft has provided workarounds for some of the vulnerabilities in MS10-018.
References
- Microsoft Security Bulletin MS10-018 - http://www.microsoft.com/technet/security/bulletin/ms10-018.mspx
- Microsoft Security Advisory (981374) - http://www.microsoft.com/technet/security/advisory/981374.mspx
- Microsoft Internet Explorer iepeers.dll use-after-free vulnerability - http://www.kb.cert.org/vuls/id/744549
Revision History
- March 30, 2010: Initial release
This product is provided subject to this Notification and this Privacy & Use policy.
