Still Unpatched IE Security Hole Raises Concern
UPDATE:
October 08, 2013, 4:18 PM — As anticipated, the latest round of Microsoft’s Patch Tuesday monthly release of security fixes addresses a widely known Internet Explorer (IE) vulnerability already being exploited by malicious hackers.
Overall, for October’s bundle of software patches, Microsoft issued eight bulletins covering 26 vulnerabilities. Microsoft rated four of the bulletins as critical and the other four as important.–By Joab Jackson, IDG News Service
Microsoft Security Bulletin Summary for October 2013
http://technet.microsoft.com/en-us/security/bulletin/ms13-oct
An unpatched vulnerability in Microsoft’s Internet Explorer is raising great concern for users of all versions of the popular browser.
The exploit – called CVE-2013-3893 was announced by Microsoft on Sept 17th.
(Microsoft) released a temporary “Fix It” tool that customers can download and install to address the flaw, but no permanent patch has been released through Windows Update.
The vulnerability affects all versions of Internet Explorer and can be exploited to execute arbitrary code on computers when IE users visit a specially crafted Web page hosted on a malicious or compromised website.
Microsoft’s next batch of security updates is scheduled for Oct. 8, but it’s not clear if the company will issue a permanent patch for this particular vulnerability at that time.
Internet Explorer exploit release could trigger a surge in attacks
While Microsoft has yet to issue a permanent patch for a known exploit, the code could become widely available to cybercriminals after being integrated into an open-source testing tool.
http://news.cnet.com/8301-1009_3-57605601-83/internet-explorer-exploit-release-could-trigger-a-surge-in-attacks/—
CVE-2013-3893: Fix it workaround available
http://blogs.technet.com/b/srd/archive/2013/09/17/cve-2013-3893-fix-it-workaround-available.aspx
249 total views, 1 views today
As the article states…"The vulnerability affects all versions of Internet Explorer"
You really have to be a little bit of a glutton for punishment to use IE any longer. Why use a browser that displays blank and screwed up pages when every other browser displays the same pages perfectly? To hell with that noise.
Well, it's not really a problem for me as I stopped using IE quite some time ago. It's latest feature, serving up blank web pages for whatever reason (under the guise of "compatibility"?), was just to silly to tolerate any longer when every other browser on the planet can do it.
Christopher
The answer to your question is YES
Affected Software
Operating System Component
Internet Explorer 6
Windows XP Service Pack 3 Internet Explorer 6
Windows XP Professional x64 Edition Service Pack 2 Internet Explorer 6
Windows Server 2003 Service Pack 2 Internet Explorer 6
Windows Server 2003 x64 Edition Service Pack 2 Internet Explorer 6
Windows Server 2003 with SP2 for Itanium-based Systems Internet Explorer 6
Internet Explorer 7
Windows XP Service Pack 3 Internet Explorer 7
Windows XP Professional x64 Edition Service Pack 2 Internet Explorer 7
Windows Server 2003 Service Pack 2 Internet Explorer 7
Windows Server 2003 x64 Edition Service Pack 2 Internet Explorer 7
Windows Server 2003 with SP2 for Itanium-based Systems Internet Explorer 7
Windows Vista Service Pack 2 Internet Explorer 7
Windows Vista x64 Edition Service Pack 2 Internet Explorer 7
Windows Server 2008 for 32-bit Systems Service Pack 2 Internet Explorer 7
Windows Server 2008 for x64-based Systems Service Pack 2 Internet Explorer 7
Windows Server 2008 for Itanium-based Systems Service Pack 2 Internet Explorer 7
Internet Explorer 8
Windows XP Service Pack 3 Internet Explorer 8
Windows XP Professional x64 Edition Service Pack 2 Internet Explorer 8
Windows Server 2003 Service Pack 2 Internet Explorer 8
Windows Server 2003 x64 Edition Service Pack 2 Internet Explorer 8
Windows Vista Service Pack 2 Internet Explorer 8
Windows Vista x64 Edition Service Pack 2 Internet Explorer 8
Windows Server 2008 for 32-bit Systems Service Pack 2 Internet Explorer 8
Windows Server 2008 for x64-based Systems Service Pack 2 Internet Explorer 8
Windows 7 for 32-bit Systems Service Pack 1 Internet Explorer 8
Windows 7 for x64-based Systems Service Pack 1 Internet Explorer 8
Windows Server 2008 R2 for x64-based Systems Service Pack 1 Internet Explorer 8
Windows Server 2008 R2 for Itanium-based Systems Service Pack 1 Internet Explorer 8
Internet Explorer 9
Windows Vista Service Pack 2 Internet Explorer 9
Windows Vista x64 Edition Service Pack 2 Internet Explorer 9
Windows Server 2008 for 32-bit Systems Service Pack 2 Internet Explorer 9
Windows Server 2008 for x64-based Systems Service Pack 2 Internet Explorer 9
Windows 7 for 32-bit Systems Service Pack 1 Internet Explorer 9
Windows 7 for x64-based Systems Service Pack 1 Internet Explorer 9
Windows Server 2008 R2 for x64-based Systems Service Pack 1 Internet Explorer 9
Internet Explorer 10
Windows 7 for 32-bit Systems Service Pack 1 Internet Explorer 10
Windows 7 for x64-based Systems Service Pack 1 Internet Explorer 10
Windows Server 2008 R2 for x64-based Systems Service Pack 1 Internet Explorer 10
Windows 8 for 32-bit Systems Internet Explorer 10
Windows 8 for 64-bit Systems Internet Explorer 10
Windows Server 2012 Internet Explorer 10
Windows RT Internet Explorer 10
Internet Explorer 11
Windows 8.1 for 32-bit Systems Internet Explorer 11
Windows 8.1 for 64-bit Systems Internet Explorer 11
Windows Server 2012 R2 Internet Explorer 11
Windows RT 8.1 Internet Explorer 11
I really don’t understand why anyone still uses that terrible browser.
Does this vulnerability apply to IE11?