Cumulative Patch For Internet Explorer December 2002
Posted by Daniel Fleshbourne on 05 December 2002 - 11:46 · 6 comments & 307 views
About the Author
Full name: Daniel Fleshbourne
Forum name: Daniel
Contact: via forum PM
Submissions: Normal · Headline
Full name: Daniel Fleshbourne
Forum name: Daniel
Contact: via forum PM
Submissions: Normal · Headline
Slashdot It!
Submit to reddit
Submit to blinklist
Bookmark on del.icio.us
Add to furl
Share on Facebook
Add to Windows Live
Add to Google- Advertisement
-
-
#1 Posted by mintll on 05 Dec 2002 - 12:03
- What a supprise!
-
(1 reply)
#2 Posted by Electronic Punk on 05 Dec 2002 - 12:50
- The double-post you mean?
-
#3 Posted by Eric Ferleman on 05 Dec 2002 - 18:35
- Anyone installed this and ran it with no problems? I'm paranoid since one of last few ones, made things worse.
-
(1 reply)
#4 Posted by markng on 06 Dec 2002 - 00:04
- Hi everyone, There's 2 version for SP1. 32bits and 64bits. What's the difference between the 2 and which one should I download. I will be updating IE on both WinXP and Win2K machines. Thanks!
Exploiting the vulnerability could enable an attacker to read, but not change, any file on the user's local computer. In addition, the attacker could invoke an executable that was already present on the local system. The attacker would need to know the exact location of the executable, and would not be able to pass parameters to it. Microsoft is not aware of any executable that ships by default as part of Windows and, when run without parameters, could be dangerous.
An attacker could exploit the vulnerability by constructing a web page that uses a cached programming technique, and could then either host it on a web site or send it to a user via email. In the case of the web-based attack vector the page could be automatically opened when a user visited the site In the case of the HTML mail- based attack vector, the page could be opened when the recipient opened the mail or viewed it using the Preview pane.
Spano testified he sent several E-mails to Elcomsoft and its American Internet service providers trying to force them to stop selling the software or to have the company's Web site blocked. He said after Elcomsoft received Adobe's complaint it added a paragraph to its site saying the eBook product should not be used for illegal purposes.
Spano was the fifth in a string of prosecution witnesses testifying in the case. The government's star witness, Dmitry Sklyarov, the 27-year-old programmer who developed Elcomsoft's eBook software, may be called as early as Thursday. Last year Sklyarov spent four months in jail before the government agreed to drop charges against him in exchange for his testimony.
Adobe apparently withdrew its support of the prosecution after Internet policy groups threatened to organize a boycott of the company's products. Civil libertarians say the digital copyright act stifles computer research and gives publishers, record companies, and movie studios too tight a grip on online content.