In association with heise online

30 March 2010, 10:03

Microsoft to release out of cycle patch for IE

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

Microsoft Logo An advance notice from Microsoft's security team states that they plan to release an Internet Explorer patch on the 30th of March. This is likely to follow the usual pattern and be released at 21:00 GMT.

The release of this patch outside of the usual monthly patch schedule is presumably because the security vulnerability in the iepeers.dll library is being actively exploited, indeed an improved version of the exploit was published on Friday. The vulnerability was originally disclosed at the start of March, but was not resolved in the following patch day.

The attack only affects Internet Explorer 6 and 7, but, according to the security bulletin, the update will also fix a critical vulnerability in Internet Explorer 8 under Windows 7. The bulletin does not specify whether Microsoft is fixing the security vulnerability demonstrated at last week's Pwn2own competition.

See also:


Print Version | Send by email | Permalink:

  • July's Community Calendar

The H Open

The H Security

The H Developer

The H Internet Toolkit