Urgent Notice For Internet Explorer Users

by on Dec 16, 2008 | 4 comments

When it is seemingly important enough, I like to run tips regarding high priority security notices. Users of Internet Explorer (any version) will want to take note of this Microsoft Security Advisory notice. The details on the problem state:

The vulnerability exists as an invalid pointer reference in the data binding function of Internet Explorer. When data binding is enabled (which is the default state), it is possible under certain conditions for an object to be released without updating the array length, leaving the potential to access the deleted object’s memory space. This can cause Internet Explorer to exit unexpectedly, in a state that is exploitable.

In a nutshell, the issue is your machine can be compromised by merely visiting a site which is coded with a special blend of scripting. You can read a more ‘user friendly’ description of the error here.

There is currently no patch for this issue as Microsoft is working to release an emergency fix. If you do use IE as your primary browser, you may want to consider using an alternate browser until this issue is resolved.

Free eBook!

Like what you read?

If so, please join over 28,000 people who receive our exclusive weekly newsletter and computer tips, and get FREE COPIES of 5 eBooks we created, as our gift to you for subscribing. Just enter your name and email below:

Post A Comment Using Facebook

  • http://www.geezergeek.net Floyd Bufkin

    If the software is from Microsoft, security ends the moment you break the shrink wrap on the box. :-)

  • shadowpr

    Looks like there will be a fix tomorrow: http://www.msnbc.msn.com/id/28258894/

  • http://www.mtitt.com Muay Thai Thailand

    “If the software is from Microsoft, security ends the moment break the shrink wrap on the box.”

    I never quite thought of it that way, but your statement is too true. i completely agree, and in a corporate environment this is the way software should be viewed.

    As a liability first and an asset later.

    Why? Bespoke solutions are private and have a private code-base.

    Microsoft solutions have public apis and all sorts of interfaces, so hacking them is simple.

  • Walter

    “Internet Explorer” means that the Internet hackers can “Explore” your PC! (including those from Microsoft…)

    It should have been named “Internet Exploit(er)”!

    The question is: will the discovery of new vulnerabilities
    ever end?

What’s Your Preference?

Daily Alerts

Each day we send out a quick email to thousands of PCMECH readers to notify them of new posts. This email is just a short, plain email with titles and links to our latest posts. You can unsubscribe from this service at any time.

You can subscribe to it by leaving your email address in the following field and confirming your subscription when you get an email asking you to do so.

Enter your email address for
Daily Updates:

Weekly Newsletter

Running for over 6 years, the PCMECH weekly newsletter helps you keep tabs on the world of tech. Each issue includes news bits, an article, an exclusive rant as well as a download of the week. This newsletter is subscribed to by over 28,000 readers (many who also subscribe to the other option) - come join the community!

To subscribe to this weekly newsletter simply add your email address to the following field and then follow the confirmation prompts. You will be able to unsubscribe at any time.

Enter your email address for
Free Weekly Newsletter: