Unpatched highly critical security vulnerabilities in ie6

[Guest]

Have these been fixed? The first one was released almost a year and a half ago.

http://secunia.com/advisories/9534/ (released 15th Aug, 2003)
http://secunia.com/advisories/11482/ (released 4th April, 2004)
http://secunia.com/advisories/11830/ (released 6th June, 2004)

 

[Viktor Krammer]

Have these been fixed? The first one was released almost a year and a half ago.

http://secunia.com/advisories/9534/ (released 15th Aug, 2003)

Yes, the mentioned activex component is deprecated and replaced by
MCI32.ocx.

http://secunia.com/advisories/11482/ (released 4th April, 2004)

Yes, fixed in Windows 2003 & XP SP2.

http://secunia.com/advisories/11830/ (released 6th June, 2004)

The exploit was not yet confirmed on XP SP2, but there is an easy
work-around for that: set all zones' security level to "High".

hth

Viktor
http://www.quero.at/