CERT mailing list archives
Microsoft Releases Security Advisory for Internet Explorer
From: "US-CERT" <US-CERT () public govdelivery com>
Date: Wed, 18 Sep 2013 15:48:28 -0500
NCCIC / US-CERT National Cyber Awareness System: Microsoft Releases Security Advisory for Internet Explorer [ https://www.us-cert.gov/ncas/current-activity/2013/09/18/Microsoft-Releases-Security-Advisory-Internet-Explorer ] 09/18/2013 03:33 PM EDT Original release date: September 18, 2013 Microsoft has released Security Advisory 2887505 [ http://technet.microsoft.com/en-us/security/advisory/2887505 ] regarding a remote code execution vulnerability (CVE-2013-3893 [ http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3893 ]) impacting Internet Explorer versions 6 through 11. Microsoft is aware of targeted attacks that attempt to exploit this vulnerability in Internet Explorer 8 and Internet Explorer 9. The Microsoft Fix it solution, "CVE-2013-3893 MSHTML Shim Workaround," prevents exploitation of this issue. US-CERT encourages administrators to review Microsoft Security Advisory 2887505 [ http://technet.microsoft.com/en-us/security/advisory/2887505 ] and Knowledge Base article 2887505 [ https://support.microsoft.com/kb/2887505 ] and follow best practice security policies to determine which updates should be applied. ________________________________________________________________________ This product is provided subject to this Notification [ http://www.us-cert.gov/privacy/notification ] and this Privacy & Use [ http://www.us-cert.gov/privacy/ ] policy. ________________________________________________________________________ OTHER RESOURCES: Contact Us [ http://www.us-cert.gov/contact-us/ ] | Security Publications [ http://www.us-cert.gov/security-publications ] | Alerts and Tips [ http://www.us-cert.gov/ncas ] | Related Resources [ http://www.us-cert.gov/related-resources ] STAY CONNECTED: Sign up for email updates [ http://public.govdelivery.com/accounts/USDHSUSCERT/subscriber/new ]
Current thread:
- Microsoft Releases Security Advisory for Internet Explorer US-CERT (Sep 18)