Special Bulletin Released for IE Flaws -- Redmond Channel Partner

Special Bulletin Released for IE Flaws

By Scott Bekker
October 06, 2003

Microsoft broke from usual practice on Friday in sending out a critical security bulletin correcting critical flaws in Internet Explorer that allow an attacker to take control of a user's computer. Microsoft normally holds security bulletins until Wednesday, but the company occasionally sends them out on other days of the week when a problem is especially serious.

A cumulative patch included with the security bulletin fixes two new flaws as well as all previous flaws. Both of the new flaws are critical in IE 5.01 Service Packs 3 and 4, IE 5.5 SP2, IE 6.0 and IE 6.0 SP1. The flaws are rated moderate in IE 6.0 in Windows Server 2003, which runs IE under Enhanced Security Configuration by default.

One of the vulnerabilities involves popup windows and occurs because IE fails to properly determine an object type returned from a Web server in a popup window. The other new vulnerability occurs because IE doesn't properly determine object types returned from a Web server during XML data binding.

The bulletin is available here: www.microsoft.com/technet/security/bulletin/ms03-040.asp.

About the Author

Scott Bekker is editor in chief of Redmond Channel Partner magazine.

Free Webcast! Learn about Password Management Best Practices

Featured

Microsoft to Shut Down Skype Services

Microsoft will discontinue its Skype telecommunications and video calling services on May 5, 2025, marking the end of the platform's decades-long run.
Microsoft Confirms End of HoloLens Mixed Reality Hardware

Microsoft officially announced this week that it is discontinuing its HoloLens mixed reality hardware, marking the end of its efforts in the space.
Microsoft Rolls Out Final Cumulative Update for Exchange Server 2019

On Monday, Microsoft released the last major update for Exchange Server 2019. The aging Exchange Server is set to lose support on Oct. 14, 2025.
Windows 11 Installation Streamlined for New Devices

Microsoft is introducing new policy changes that will give IT administrators greater control over Windows 11 updates during the initial setup of new devices.

RCP Update

Email Address*Country*

Please type the letters/numbers you see above.

Special Bulletin Released for IE Flaws

Featured

Microsoft to Shut Down Skype Services

Microsoft Confirms End of HoloLens Mixed Reality Hardware

Microsoft Rolls Out Final Cumulative Update for Exchange Server 2019

Windows 11 Installation Streamlined for New Devices

Microsoft to Shut Down Skype Services

2025 Microsoft Conference Calendar: For Partners, IT Pros and Developers

Microsoft Confirms End of HoloLens Mixed Reality Hardware

The Ingredients of Recurring Partner Revenue: Volume and Customer Satisfaction

Microsoft Unveils 2025 Roadmap for Dynamics 365, Copilot and Power Platform

Microsoft to Shut Down Skype Services

2025 Microsoft Conference Calendar: For Partners, IT Pros and Developers

Microsoft Confirms End of HoloLens Mixed Reality Hardware

The Ingredients of Recurring Partner Revenue: Volume and Customer Satisfaction

Microsoft Unveils 2025 Roadmap for Dynamics 365, Copilot and Power Platform

Partner Guides

Partner's Guide to the Windows Server 2008 Deadline

Partner's Guide to Office 365 Security Costs

Partner's Guide to UCaaS

Partner's Guide to Starter Workloads in Azure

Partner's Guide to Microsoft's Fiscal Year 2019

FREE WEBCASTS FROM OUR SPONSORS

Tech Talk | What Keeps MSPs Up at Night? Addressing Key Risks and Building Resilience

Unlocking a New Era of Tax Automation within Microsoft Dynamics 365: Introducing Vertex's API-Based Tax Integration

Unlocking Revenue Growth with Vertex and Microsoft: A Winning Partnership

Microsoft Ignite 2024: Top Announcements and Takeaways

FREE WHITE PAPERS FROM OUR SPONSORS

How Retailers Can Overcome 7 Common Tax Compliance Challenges

Tax Challenges Affecting the Manufacturing Industry

Data Analytics Drive Supply Chain Optimization

Digital Transformation: The Case for Moving Tax to the Cloud