Quick Fix for IE Zero-day Vulnerability (CVE-2012-4792) is Available

Microsoft has released quick fix for a zero-day vulnerability in older versions of its Internet Explorer web browser that is actively being exploited by hackers.

 The security flaw affects the IE 6, Internet Explorer 7 and Internet Explorer 8. Versions 9 and 10 are not affected by this vulnerability.
About CVE-2012-4792:

Use-after-free vulnerability in Microsoft Internet Explorer 6 through 8 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to an object that (1) was not properly allocated or (2) is deleted, as demonstrated by a CDwnBindInfo object, and exploited in the wild in December 2012.
The company said that the "Fix it solution" is not intended to be a replacement for any security update.

 "We recommend that you always install the latest security updates. However, we offer this Fix it solution as a workaround option for some scenarios."

 Quick fix the vulnerability is available here:
http://support.microsoft.com/kb/2794220#FixItForMe

Ping your blog, website, or RSS feed for Free

Do you have questions, comments, or suggestions? Feel free to post a comment! 


Get Regular Updates, Its FREE!




Share your views...

0 Respones to "Quick Fix for IE Zero-day Vulnerability (CVE-2012-4792) is Available"

Post a Comment

Subscribe to: Post Comments (Atom)
 

About Me

Saint Andrew is a computer science student. Saint Andrew is a founder of the blog Saint Andrew's Hacking Paradise.

His mission and the aim of this blog is to make the reader aware of the existing threats and describe them in comprehensible way.

"Saint Andrew's Hacking Paradise" is a place to Learn, Understand and Explore the facts of computer technology.

You are always welcome to contact us to suggest ideas, tips, or to ask questions.

© 2011 Saint Andrew's Hacking Paradise

This blog run on iThesis Theme & hosted by Blogger