CERT Alert for Microsoft computers accessing the WEB

Lem Lo · Apr 14, 2004

Hello. Do you know the latest status of Microsoft fixing the latest
vulnerability found in IE?

It is mentioned in CERT TA04-099A.

Thanks
(e-mail address removed)

Laura E. Hunter \(MVP\) · Apr 14, 2004

This has been addressed by the MS04-013 patch. There are 3 other critical
patches that were released in April that should be applied, as well.

http://www.microsoft.com/security/security_bulletins/200404_windows.asp

Guest · Apr 15, 2004

Laura

In the MS04-013 write-u

Vulnerability Details > MHTML URL Processing Vulnerability - CAN-2004-0380 > FAQ... Sectio

Last paragraph

"What does the update do
This update addresses the vulnerability by modifying the way that Outlook Express processes MHTML URLs.

To me that sounds like IE remained unpatched, have I missed something

i

----- Laura E. Hunter (MVP) wrote: ----

This has been addressed by the MS04-013 patch. There are 3 other critical
patches that were released in April that should be applied, as well

http://www.microsoft.com/security/security_bulletins/200404_windows.as

CERT Alert for Microsoft computers accessing the WEB

Lem Lo

Laura E. Hunter \(MVP\)

Guest