Microsoft has released an emergency patch to protect Internet Explorer users from attack.
Users are stongly advised to get this one in ASAP
The patch is for a hole in the technology used to build ActiveX controls and other web app components.
Interent Exploer users running Flash Player (basically used for just about every video site on the Internet, i.e. YouTube) and Shockwave Player are vulnerable.
The critical update, MS-09034, is targeted at IE users and the other, MS-09035, is targeted at Visual Studio developers and is rated moderate. It affects Visual Studio 2005 and 2008.
Microsoft warned users about the issue earlier this month, saying a vulnerability in its Video ActiveX Control could allow an attacker to take control of a PC if the user visits a malicious Internet site and attackers were exploiting the hole. The company offered a workaround for the issue.
The update comes early compared to the usual patch cycle. Normally the next patch would be August 11th from July, but Microsoft has decided that the need for the patch is great enough for the early release.
Related posts:
