Tech Alert Briefing for 2/27/2002
CERT Issues Warning onInternet Explorer and Outlook Flaw
The Computer Emergency Response Team (Cert) released another advisory warning regarding a new vulnerability affecting Microsoft Internet Explorer and Outlook.
Cert warned that that this newly discovered buffer overflow vulnerability could allow an attacker to execute arbitrary code on a victim's system. This vulnerability could be exploited to distribute viruses, worms, or other malicious code.
Microsoft has released patches to its Internet Explorer browser and its 98 and 2000 versions of Outlook.These are considered critical updates.
Additional Information:
Microsoft Tech Alert Bulletin and Internet Explorer Software Patches
Outlook Email Security Updates
(Outlook 2002 and Outlook Express 6 contain the latest security patches)
Outlook 2000 Security Update
Outlook 98 Security Update
CERT? Advisory CA-2002-04:Buffer Overflow in Microsoft Internet Explorer
Previous Tech Alerts:
02/22/02 SNMP Patches and Detection Tools Available
02/20/02 Email Address Belonging to Legitimate Security Site Hijacked to Deliver Dangerous Yarner Worm
02/15/02 Mass Mailing Email Worm Compromises Word 2000 Security Settings
02/13/02 SNMP VULNERABILITY
02/07/02 Bloodhound Mass Mailing Worm and Managing Risks in Wireless Networks
02/04/02 Microsoft Issues Collection of Security Fixes for Windows 2000
01/31/02 Copycat Virus Unleashed
01/30/02 Netscape Browser Vulnerable to Cookie Theft
01/28/02 "My Party" Mass Mailing Worm
01/18/02 IT Contingency Planning Guide, Information Security Checklist and Solaris Vulnerability
01/15/02 Trojan.StartPage Alters Web Browsers
01/12/02 New Internet Worm Gigger Masquerades as Microsoft Outlook Upgrade
01/08/02 Microsoft Universal Plug and Play Vulnerability
12/20/01 Holiday Themed Computer Virus Unleashed