Microsoft Announces New Security Vulnerability in Internet Explorer

A new Microsoft Security Advisory (Number 2458511) discusses a recently discovered vulnerability in Internet Explorer that could allow an attacker to execute code remotely

Jeff James

November 3, 2010

1 Min Read
ITPro Today logo in a gray background | ITPro Today

A newMicrosoft Security Advisory (Number 2458511) discusses a recently discovered vulnerability in Internet Explorer that could allow an attacker to execute code remotely. Microsoft says that Internet Explorer 6, 7, and 8 are vulnerable to this attack, but Internet Explorer 9 beta seems to be immune to the exploit.

Some additional details from the Microsoft Security Advisory:

At this time, we are aware of targeted attacks attempting to use this vulnerability. We will continue to monitor the threat environment and update this advisory if this situation changes. On completion of this investigation, Microsoft will take the appropriate action to protect our customers, which may include providing a solution through our monthly security update release process, or an out-of-cycle security update, depending on customer needs.


Microsoft also suggests some fixes and workarounds for the issue, including:

  • Enable a firewall and install anti-virus, anti-malware, and anti-spyware software

  • Employ Data Execution Prevention (DEP), which should prevent "attacks that result in code execution and is enabled by default in Internet Explorer 8 on the following Windows operating systems: Windows XP Service Pack 3, Windows Vista Service Pack 1, Windows Vista Service Pack 2, and Windows 7."

  • Use Protected Mode in IE on Vista and Windows 7, a step that should also minimize vulnerability to the exploit.

Follow Jeff James on Twitter at @jeffjames3

Follow Windows IT Pro on Twitter at @windowsitpro

Related Content:

Read more about:

Microsoft

About the Author

Jeff James

Jeff James

See more from Jeff James
Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.
Newsletter Sign-Up

You May Also Like

Editor's Choice

ITPro Today's 2024 IT Priorities Report cover
Career Management
ITPro Today’s 2024 IT Priorities ReportITPro Today’s 2024 IT Priorities Report
byChristopher Tozzi
Sep 25, 2024
1 Min Read
a casually dressed it professionals is awkwardly projected on a video call screen in front of a large professional audience
Career Tips
My Manager Promised a Chill Meeting. I Got Ambushed Instead.My Manager Promised a Chill Meeting. I Got Ambushed Instead.
byDanielle Meinert
Sep 26, 2024
3 Min Read
a gavel at the center of a maze
Regulatory Compliance
Guide To Navigating the Legal Perils After a Cyber IncidentGuide To Navigating the Legal Perils After a Cyber Incident
byIan Horowitz
Sep 20, 2024
7 Min Read
Exclusive ITPro Resources
See all ITPro Resources

Featured Technical Explainers

multicloud concept
Cloud Computing
Cross-Cloud: The Next Evolution in Cloud Computing?Cross-Cloud: The Next Evolution in Cloud Computing?
Wi-Fi 6 speed logo glowing on virtual screen while businessperson points hand and using laptop computer.
IT Operations
Wi-Fi 6: A Step Forward, But Wired LAN Still Holds the CrownWi-Fi 6: A Step Forward, But Wired LAN Still Holds the Crown
American flag in front of a government building
IT Operations
Pros and Cons of Government IT JobsPros and Cons of Government IT Jobs
Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.
Newsletter Sign-Up

Recent What Is

technology interface with a person's hand drawing gears and cogs
PowerShell
Introduction To PowerShell Environment VariablesIntroduction To PowerShell Environment Variables
list of domains within the umbrella category of IT security
IT Security
What Is IT Security? Essentials of IT Security ExplainedWhat Is IT Security? Essentials of IT Security Explained