Current Activity - Microsoft Releases Security Advisory 2501696

[Current Activity <us-cert () us-cert gov>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

US-CERT Current Activity

Microsoft Releases Security Advisory 2501696

Original release date: January 28, 2011 at 2:02 pm
Last revised: January 28, 2011 at 2:02 pm


Microsoft has released Microsoft security advisory 2501696 indicating
that it is investigating public reports of a vulnerability affecting
Windows. This vulnerability is due to the way MHTML interprets
MIME-formatted requests for content blocks within a document.
Exploitation of this vulnerability may allow an attacker to obtain
sensitive information.

US-CERT encourages users and administrators to review Microsoft
security advisory 2501696 and implement the suggested workarounds or
utilize Microsoft Fix it 50602 to help mitigate the risks. Additional
information regarding this vulnerability can be found on the Microsoft
TechNet Security Research & Defense blog.

Relevant Url(s):
<http://blogs.technet.com/b/srd/>

<http://support.microsoft.com/kb/2501696>

<http://www.microsoft.com/technet/security/advisory/2501696.mspx>

====
This entry is available at
http://www.us-cert.gov/current/index.html#microsoft_releases_security_advisory_2501696

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iQEVAwUBTUMVzj6pPKYJORa3AQIIJQf/YII+F6FcKW2cAFyPp54Oc9J63BxBcfFP
NxO1WGl3ZNZMqGl4aGEgntbfINCM2o23bOvjxvUMBgWL4z0I140MXf/5TlLReOHL
grVgT/RYRfUOmb4BI6JxTL8cCv90q+BLWcBXNW7vQ2Zl61iU/zbMG3RZkf4+VhOA
fUE36FV4Y6AoNww0H/lG2K+T+lsWJ9t9wDH1IyMm3GdMFZvpIta4xpDTryAeacw2
uwRZJtfY0JVK8xihRGYGErBwhUG3ygAqPWEJuwfG4cYpPMbN7i7b8SQ30PYnu7wb
OR9ztLjXKMv6zblAaRsUZ4WZIm1aO/dTXTfvEZ3TlN9JkT3vBiVfkQ==
=2kzn
-----END PGP SIGNATURE-----