LM_NET: Library Media Networking

Previous by DateNext by Date Date Index
Previous by ThreadNext by Thread Thread Index
LM_NET Archive 


Here is a very reputable source of information on the subject of
Security Hole of Microsoft Explorer.


Date: Wed, 5 Mar 1997 10:05:40 -0800
From: Patrick Douglas Crispen <crispen@CAMPUS.MCI.NET>
Reply-To:
         TOURBUS-Request@LISTSERV.AOL.COM
      To:
         TOURBUS@LISTSERV.AOL.COM


   /~~~~~~~~~|~~~~~~~~~~~~/~~~~~~~~|~~~~~~~~~~|~~~~~~~~~~~~~/~~~|~\
  |     "Why | Surf When / You Can | Ride The | Bus?"      /    |  \
  |__________|__________/__________|__________|___________/     |   \
 /                                                       /______|----\
|     Visit the TOURBUS website to see the Archives,     |//////|    |
|           FAQ, and Subscription Information!           |//////|    |
|                 http://www.TOURBUS.com                 |//////|    |
|                                                        |//////|    |
 ~~~/~~~\~~/~~~\~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~/~~~\~~~~
    \___/  \___/  T h e   I n t e r n e t   T o u r B u s    \___/

TODAY'S STOP:      EXPLORER SECURITY HOLE / MORE CRAIG / VIRUSES IN E-
                   MAIL?
TODAY'S ADDRESSES:
     http://www.educom.edu/edupage.old/edupage.97/edupage-03.05.97
     http://www.microsoft.com/ie/security/update.htm
     http://ciac.llnl.gov/ciac/CIACHoaxes.html
     http://www.fcc.gov/Bureaus/Miscellaneous/Public_Notices/
        pnmc5036.txt


SECURITY HOLE IN INTERNET EXPLORER
----------------------------------

According to Wednesday's Edupage, there is a potentially damaging
security
hole in Microsoft's Internet Explorer web browser software.  Edupage
reports that

     Microsoft says it is moving quickly to plug a security hole in
     its Explorer Web-browsing software that was discovered by
     Worcester Polytechnic Institute student Paul Greene.  Microsoft
     says the flaw, which involves basic functions within Microsoft's
     Windows 95 and Windows NT operating systems, bypasses the highest
     levels of the software's security systems. (Washington Post 3 Mar
     97)

     [quoted from http://www.educom.edu/edupage.old/edupage.97/
     edupage-03.05.97]

The security hole leaves users vulnerable to remote file deletion and
uploading, as well as to hard drive erasure.  According to Microsoft

     Users could be affected by this problem if they are running
     standard or 128-bit versions of Internet Explorer 3.0 and 3.01
     for Windows 95 and Windows NT 4.0. It cannot affect users of
     Internet Explorer 3.0 / 3.0a for Windows 3.1/NT 3.51 or Internet
     Explorer for Macintosh 2.1 / 3.0 / 3.0a.

Microsoft has already fixed the security problem, and a code fix can be
found on the Web at

     http://www.microsoft.com/ie/security/update.htm

The code fix for Explorer 3.01 was available on Wednesday (5 March), and
a code fix for Explorer 3.0 should be ready on Thursday (6 March).
LM_NET Archive Home