Infocon to status yellow !

  • Thread starter Thread starter plun
  • Start date Start date
Here's how to do that:

Click the "View" menu.
Click "Internet Options..."
Click the "Security" tab.
Click the "Custom (for expert users)" button and then click the
"Settings..." button.
Scroll down to the "Active Scripting" section and click the "Disable"
button.
Click the "OK" button.
Click the "Apply" button.


(although I've tried the PoC code myself and it didn't work for me--but it
has for others....)
 
PoC did work on my wifes machine, but crashed IE after launching Calc.

--

Bill Sanderson said:
Here's how to do that:

Click the "View" menu.
Click "Internet Options..."
Click the "Security" tab.
Click the "Custom (for expert users)" button and then click the
"Settings..." button.
Scroll down to the "Active Scripting" section and click the "Disable"
button.
Click the "OK" button.
Click the "Apply" button.


(although I've tried the PoC code myself and it didn't work for me--but it
has for others....)



--
Click to expand...
 
peruser said:
http://www.microsoft.com/technet/security/advisory/911302.mspx

Microsoft suggests that professionally obligated entities knew of this flaw
and failed to notify microsoft of the issue... "Microsoft is concerned that
this new report of a vulnerability in Internet Explorer was not disclosed
responsibly, potentially putting computer users at risk."
Click to expand...

One could look at it that way, I suppose, but they were notified of the
problem in May. At that time it was only seen as a denial of service
problem. The present exploit is a more creative elaboration on the same
security flaw.

Bob Vanderveen
 
Back
Top