IE ermöglicht Angriff; Inoffizieller Patch für Lücke im Internet Explorer

An Ad

Integrate business news on your website free of charge and offer your visitors up-to-date content! Click here for more information.

IE allows Trojan invasion; Unofficial Patch provided by eEye

In the last couple of days security experts repeatedly reported about a new security hole recently found in Microsoft's web-browser Internet Explorer. According to German IT publisher heise.de, the latest problem is caused by the interpretation of java script-code embedded in websites. By exploiting a specific command, attackers are able to install Trojan viruses, spy ware, and other malicious code. More than 200 websites have already been reported which exploit this security issue. In the meantime Microsoft has advised users to disable the Active Scripting support.

Microsoft has responded by advising users to disable Active Scripting or if, that is not possible, to set the security settings for the local and Internet zone to high. As heise.de reports two more security issues are currently known which have not yet been patched. Experts advise to switch to alternative web-browsers like Opera and Mozilla Firefox.

Security experts eEye have provided a patch of their own which shall disable the Javascript-related issue. As heise reports, the patch successfully closes the security hole, but malicious code can still fill the memory and, although not doing any harm, slow down users' PCs. Thus, PCs become only 'barely usable', heise.de writes. Microsoft currently discourages users to install the patch on grounds that the Redmond-based company has not yet tested it.

sources:   heise.de

eEye's unofficial Patch: eEye