Internet Security Systems Protection Brief July 30, 2004
Multiple Vulnerabilities in Microsoft Internet Explorer
Microsoft has released an unscheduled security bulletin MS04-025 which addresses multiple security issues within the Internet Explorer web browser. There are three critical vulnerabilities in this update, all of which may lead to remote system compromise.
By exploiting any of these vulnerabilities it is possible for an attacker to run arbitrary code on target systems. Successful exploitation can be leveraged to gain complete controlover target systems, and may lead to malware installation,exposure of confidential information, or further network compromise. In order to exploit these vulnerabilities, a victim would have to visit a website hosting malicious code or preview or open an email containing a malicious GIF or BMP image.
For the complete X-Force Protection Alert, please visit:Duane :)