Microsoft Security Advisory 17 September 2012

jcat · Sep 18, 2012

Vulnerability in Internet Explorer Could Allow Remote Code Execution

Microsoft is investigating public reports of a vulnerability in Internet Explorer 6, Internet Explorer 7, Internet Explorer 8, and Internet Explorer 9. Internet Explorer 10 is not affected. Microsoft is aware of targeted attacks that attempt to exploit this vulnerability.

A remote code execution vulnerability exists in the way that Internet Explorer accesses an object that has been deleted or has not been properly allocated. The vulnerability may corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user within Internet Explorer. An attacker could host a specially crafted website that is designed to exploit this vulnerability through Internet Explorer and then convince a user to view the website.

Forget Microsoft's Advice For Avoiding A Critical Internet Explorer Security Bug--Just Use A Different Browser

Microsoft has confirmed that a bug in Internet Explorer leaves users vulnerable to attackers, and is recommending several temporary fixes. Here’s the best one, and one Microsoft declines to suggest: Drop IE, and use a different browser altogether.

On Monday, Microsoft issued a security advisory for Internet Explorer users running all versions from IE6 to IE9 running Windows 7 and earlier, warning of a security bug that can allow the takeover of the PC of any user tricked into visiting a website rigged to exploit the flaw. The hack, which was first spotted late last week by security researcher Eric Romang, is already being used to install the Poison Ivy trojan by some of the same cybercriminal operations that earlier exploited a security flaw in Java, and security firm Rapid7 estimates that the bug affects 41% of users in North America and 32% of users worldwide.

blueyedgirl5946 · Sep 18, 2012

Now this is scary. We have internet explorer. How do we get a different browser. I have never had anything else.

minka · Sep 18, 2012

blueyedgirl5946 said:
Now this is scary. We have internet explorers. How do we get a different browser. I have never had anything else.

Just go to www.google.com/chrome to get Google Chrome or go to www.mozilla.org to get Mozilla Firefox.
Both should have pretty big dowload buttons on their front page. Just download and install. Make sure to check the box for 'put icon on desktop' if it asks you. When you are done, you will notice a new icon on your desktop. For Chrome its a red, yellow and green circle, for Firefox its a fox wrapped around a globe. Then, from now on, instead of clicking the big E (for Internet Explorer), you'll click the rainbow circle or fox to get to the internet. The border of the window is the only thing that will change, all websites will be the same. :-)

Jcat, this is why I didn't use Internet Exploder from the beginning. ;-)

jcat · Sep 18, 2012

Minka said:
Jcat, this is why I didn't use Internet Exploder feom the beginning. ;-)

I won't /don't use it, either. There are so many better and faster browsers. I use Chrome or Firefox, and also have Safari and Opera on my computer.

Barbara, there are screenshots of Chrome and Firefox in this post.

jcat · Sep 18, 2012

Here's another article - Germans have officially been warned to switch to another browser by a government agency.
German cybersecurity agency prods users to ditch IE

Germany's cybersecurity agency on Monday urged users to drop Internet Explorer (IE) and switch to a rival, like Chrome or Firefox, until Microsoft patches a new critical bug in its browser.

In an alert released Monday, Germany's Federal Office for Information Security, known by its German initials of BSI for "Bundesamt fuer Sicherheit in der Informationstechnik," noted that the unpatched vulnerability is already being exploited by hackers, and that "the attack code is freely available on the Internet."

BSI then advised users to stop running IE for now. ...According to Microsoft, IE6, IE7, IE8 and IE9 running on Windows XP, Vista and Windows 7 all contain the remote code execution vulnerability. IE10, the browser bundled with Windows 8, is free of the bug, however.

blueyedgirl5946 · Sep 18, 2012

jcat said:
I won't /don't use it, either. There are so many better and faster browsers. I use Chrome or Firefox, and also have Safari and Opera on my computer.
Barbara, there are screenshots of Chrome and Firefox in this post.

I don't have anything in my startup menu that looks like this, I am running Windows 7. Which works better with it.

minka · Sep 18, 2012

blueyedgirl5946 said:
I don't have anything in my startup menu that looks like this, I am running Windows 7. Which works better with it.

Yes, because you need to install one of the two browsers on your computer. I gave you instructions in my last post.
Also, it doesn't matter if you have Windows 7. This bug leaves you vunerable no matter what version of Windows you have.

blueyedgirl5946 · Sep 18, 2012

Minka said:
Yes, because you need to install one of the two browsers on your computer. I gave you instructions in my last post.
Also, it doesn't matter if you have Windows 7. This bug leaves you vunerable no matter what version of Windows you have.

I was referring to jcat's post 4 where she said there are screenshots. I clicked on the link and it said there access them from the startup. Minka, I asked the question does Chrome or Firefox work best with windows 7. I think you misunderstood my post.

blueyedgirl5946 · Sep 18, 2012

I have downloaded Firefox and am using it now on this site. So I have a major question. Across the top of my screen in Internet Explorer were some icons for file, edit, view, favorites, tools, help, home, printer, page, and more Can someone tell me now how in the world do you do anything using this browser. One difference I see is I was having trouble with my back button not working like it should and that seems to work now better with this browser.

minka · Sep 19, 2012

blueyedgirl5946 said:
I have downloaded Firefox and am using it now on this site. So I have a major question. Across the top of my screen in Internet Explorer were some icons for file, edit, view, favorites, tools, help, home, printer, page, and more Can someone tell me now how in the world do you do anything using this browser. One difference I see is I was having trouble with my back button not working like it should and that seems to work now better with this browser.

They are hidden to save space. You can have them show all the time, or bring them up only when you need them: http://support.mozilla.org/en-US/kb/what-happened-to-the-file-edit-and-view-menus

I'm glad Firefox is working better for you

jcat · Sep 19, 2012

blueyedgirl5946 said:
I was referring to jcat's post 4 where she said there are screenshots. I clicked on the link and it said there access them from the startup. Minka, I asked the question does Chrome or Firefox work best with windows 7. I think you misunderstood my post.

The screenshots were to show the member asking about other browsers what her desktop would look like after she downloaded a new browser, and where she could access it, i.e., from the desktop icon or start menu.

Chrome and Firefox work equally well with Windows 7. Chrome is more of a "stripped-down" browser, whereas you can customize the Firefox toolbar to get the copy, print, paste, etc., icons.

Put your mouse cursor on the top toolbar, right click and choose "Customize" in the drop-down menu. You'll get a pop-up with all sorts of tool icons. Just drag and drop the ones you want on to the toolbar. You left click on the icon, keep the left button depressed, drag the icon to the toolbar and release the left button. The icon will then be on your toolbar.

blueyedgirl5946 · Sep 19, 2012

Tricia, thanks for the detailed explanation. I have done that and I think it will help me to like Firefox better. As I said, I have noticed that on this site where I was having trouble hitting the arrow to go to the previous page, that part works really good now using Firefox. So I will definitely use this browser on this website. Oh, one other thing. I imported my bookmarks from I/E. It didn't get them all. But anyway, what do I do when I want to add a site to my Favorites.

jazzythecat · Sep 19, 2012

Honestly? This happened again!? That's twice in around two weeks, fix your program Microsoft!

jcat · Sep 20, 2012

blueyedgirl5946 said:
But anyway, what do I do when I want to add a site to my Favorites.

Do you see the little star over on the right of the address bar? If you click on that you should get an "Edit Bookmark" pop-up which allows you to add the site to your Bookmarks Toolbar, Menu or another folder.
For example, I've got TCS added to my Toolbar, but I could have added it to the Menu (list) (Click on it for a bigger image):

View media item 132133

jcat · Sep 23, 2012

Microsoft Patches Internet Explorer Zero-Day Flaw in Security Update

"Today we released Security Update MS12-063 to address limited attacks against a small number of computers through a vulnerability in Internet Explorer versions 9 and earlier," blogged Yunsun Wee, director, Microsoft Trustworthy Computing. "The majority of customers have automatic updates enabled and will not need to take any action because protections will be downloaded and installed automatically. For those manually updating, we encourage you to apply this update as quickly as possible."

In addition to the zero-day, the update also addresses four other privately disclosed security issues in IE. None of those four vulnerabilities are known to have been exploited in the wild, Microsoft said. All four are remote-code-execution vulnerabilities.

minka · Sep 23, 2012

Still wouldn't use Internet Exploder even if you paid me.

blueyedgirl5946 · Sep 23, 2012

I certainly will tell my hubby. l I downloaded Firefox after I got the warning message here. But his computer still has I/O.

Microsoft Security Advisory 17 September 2012

Mo(w)gli's can opener

Thread starter

TCS Member

TCS Member

Mo(w)gli's can opener

Thread starter

Mo(w)gli's can opener

Thread starter

TCS Member

TCS Member

TCS Member

TCS Member

TCS Member

Mo(w)gli's can opener

Thread starter

TCS Member

TCS Member

Mo(w)gli's can opener

Thread starter

Mo(w)gli's can opener

Thread starter

TCS Member

TCS Member