Microsoft Releases Security Advisory for Internet Explorer

["US-CERT" <US-CERT () public govdelivery com>]

NCCIC / US-CERT

National Cyber Awareness System:

Microsoft Releases Security Advisory for Internet Explorer [ 
https://www.us-cert.gov/ncas/current-activity/2013/09/18/Microsoft-Releases-Security-Advisory-Internet-Explorer ] 
09/18/2013 03:33 PM EDT 
Original release date: September 18, 2013

Microsoft has released Security Advisory 2887505 [ http://technet.microsoft.com/en-us/security/advisory/2887505 ] 
regarding a remote code execution vulnerability (CVE-2013-3893 [ 
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3893 ]) impacting Internet Explorer versions 6 through 11. 
Microsoft is aware of targeted attacks that attempt to exploit this vulnerability in Internet Explorer 8 and Internet 
Explorer 9. The Microsoft Fix it solution, "CVE-2013-3893 MSHTML Shim Workaround," prevents exploitation of this issue.

US-CERT encourages administrators to review Microsoft Security Advisory 2887505 [ 
http://technet.microsoft.com/en-us/security/advisory/2887505 ] and Knowledge Base article 2887505 [ 
https://support.microsoft.com/kb/2887505 ] and follow best practice security policies to determine which updates should 
be applied.

________________________________________________________________________

This product is provided subject to this Notification [ http://www.us-cert.gov/privacy/notification ] and this Privacy 
& Use [ http://www.us-cert.gov/privacy/ ] policy.

________________________________________________________________________

OTHER RESOURCES: Contact Us [ http://www.us-cert.gov/contact-us/ ] | Security Publications [ 
http://www.us-cert.gov/security-publications ] | Alerts and Tips [ http://www.us-cert.gov/ncas ] | Related Resources [ 
http://www.us-cert.gov/related-resources ] 

STAY CONNECTED: Sign up for email updates [ http://public.govdelivery.com/accounts/USDHSUSCERT/subscriber/new ]