eEye: Flaw found in IE, Outlook installation

A security flaw has been found in the default installation process for Microsoft's Internet Explorer, Outlook and Outlook Express, according to eEye Digital Security. A common thread with these applications is the potential for a buffer overflow, which in turn could allow an attacker to gain access to users' systems remotely, said Mike Puterbaugh, eEye's senior director of product marketing.

eEye, which issued an announcement about the problem late last week, noted that systems at risk include those running Windows XP with Service Pack 0 or 1 and Windows 2000. The security specialist noted that it is still conducting reviews of the flaw and could find that other versions of the operating system are affected. Microsoft is not aware of any attacks involving the reported vulnerability or any customers who have been affected, a company representative said.

View: The full story

News source: ZDNet UK

Report a problem with article
Previous Story

Fox in Microsoft's Tool Coop

Next Story

PGR3 to be delayed?

1 Comments

Commenting is disabled on this article.

Come on guys... no need to start attacking everyone just because some people haven't upgraded. I imagine there are still people out there who actually just didn't realize they need to. "Buy a computer, why do I have to do a tune-up? That's for my car."


They just need to be educated more.