Microsoft Internet Explorer Malformed IFRAME Remote Buffer Overflow Vulnerability

Solution:
Avaya has released an advisory that acknowledges this vulnerability for Avaya products. Avaya advise that customers follow the Microsoft recommendations to address this issue. Please see the referenced Avaya advisory at the following location for further details:
http://support.avaya.com/japple/css/japple?temp.groupID=128450&temp.selectedFamily=128451&temp.selectedProduct=154235&temp.selectedBucket=126655&temp.feedbackState=askForFeedback&temp.documentID=212001&PAGE=avaya.css.CSSLvl1Detail&executeTransaction=avaya.css.UsageUpdate()

Microsoft Internet Explorer 6 Service Pack 2 is not prone to this vulnerability. If applicable, customers are advised to apply this service pack in order to mitigate the risk of exposure.

Microsoft has released a security bulletin that provides fixes for this issue on supported versions of the operating system. This bulletin also includes update rollup 889669 fixes for corporate users or users that have received hotfixes for Internet Explorer 6 SP1 after the release of bulletin MS04-004.


Microsoft Internet Explorer 6.0 SP1


 

Privacy Statement
Copyright 2010, SecurityFocus