CERT mailing list archives
Current Activity - Microsoft Releases Security Advisory 2501696
From: Current Activity <us-cert () us-cert gov>
Date: Fri, 28 Jan 2011 14:15:44 -0500
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 US-CERT Current Activity Microsoft Releases Security Advisory 2501696 Original release date: January 28, 2011 at 2:02 pm Last revised: January 28, 2011 at 2:02 pm Microsoft has released Microsoft security advisory 2501696 indicating that it is investigating public reports of a vulnerability affecting Windows. This vulnerability is due to the way MHTML interprets MIME-formatted requests for content blocks within a document. Exploitation of this vulnerability may allow an attacker to obtain sensitive information. US-CERT encourages users and administrators to review Microsoft security advisory 2501696 and implement the suggested workarounds or utilize Microsoft Fix it 50602 to help mitigate the risks. Additional information regarding this vulnerability can be found on the Microsoft TechNet Security Research & Defense blog. Relevant Url(s): <http://blogs.technet.com/b/srd/> <http://support.microsoft.com/kb/2501696> <http://www.microsoft.com/technet/security/advisory/2501696.mspx> ==== This entry is available at http://www.us-cert.gov/current/index.html#microsoft_releases_security_advisory_2501696 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iQEVAwUBTUMVzj6pPKYJORa3AQIIJQf/YII+F6FcKW2cAFyPp54Oc9J63BxBcfFP NxO1WGl3ZNZMqGl4aGEgntbfINCM2o23bOvjxvUMBgWL4z0I140MXf/5TlLReOHL grVgT/RYRfUOmb4BI6JxTL8cCv90q+BLWcBXNW7vQ2Zl61iU/zbMG3RZkf4+VhOA fUE36FV4Y6AoNww0H/lG2K+T+lsWJ9t9wDH1IyMm3GdMFZvpIta4xpDTryAeacw2 uwRZJtfY0JVK8xihRGYGErBwhUG3ygAqPWEJuwfG4cYpPMbN7i7b8SQ30PYnu7wb OR9ztLjXKMv6zblAaRsUZ4WZIm1aO/dTXTfvEZ3TlN9JkT3vBiVfkQ== =2kzn -----END PGP SIGNATURE-----
Current thread:
- Current Activity - Microsoft Releases Security Advisory 2501696 Current Activity (Jan 28)