CERT Alert for Microsoft computers accessing the WEB

Lem Lo · Apr 14, 2004

Hello. Do you know the latest status of Microsoft fixing the latest
vulnerability found in IE?

It is mentioned in CERT TA04-099A.

Thanks
(e-mail address removed)

Laura E. Hunter \(MVP\) · Apr 14, 2004

This has been addressed by the MS04-013 patch. There are 3 other critical
patches that were released in April that should be applied, as well.

http://www.microsoft.com/security/security_bulletins/200404_windows.asp

Guest · Apr 15, 2004

Laura

In the MS04-013 write-u

Vulnerability Details > MHTML URL Processing Vulnerability - CAN-2004-0380 > FAQ... Sectio

Last paragraph

"What does the update do
This update addresses the vulnerability by modifying the way that Outlook Express processes MHTML URLs.

To me that sounds like IE remained unpatched, have I missed something

i

----- Laura E. Hunter (MVP) wrote: ----

This has been addressed by the MS04-013 patch. There are 3 other critical
patches that were released in April that should be applied, as well

http://www.microsoft.com/security/security_bulletins/200404_windows.as

CERT recommends NOT using HTML in Email	9	Nov 12, 2004
Trusted CA question	3	Mar 30, 2004
WebDAV and PKI certificate authentication issues	0	Aug 11, 2010
Certificate Services configuration	2	Mar 17, 2004
Choose a Digital Certificate Blank!!	2	Sep 10, 2008
BUG?: Can't disable "Trusted" for Certificates Issued by MS CertificateServer	12	Oct 27, 2003
Digital Certificates not validated after XP SP 1 Upgrade	1	Feb 13, 2004
IPSEC	3	Feb 7, 2004

CERT Alert for Microsoft computers accessing the WEB

Lem Lo

Laura E. Hunter \(MVP\)

Guest

Ask a Question

Similar Threads