Microsoft LogoOn May 1st Microsoft announced a fix for the zero-day IE security flaw that was discovered in April.  “This security update resolves a publicly disclosed vulnerability in Internet Explorer. The vulnerability could allow remote code execution if a user views a specially crafted webpage using an affected version of Internet Explorer. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.”

The original issue was discussed in Zero-Day IE blog post I made a few days back, which linked to Microsoft and offered a few work around solutions until a patch could be developed.  If you applied any of these work around solutions, you will need to reverse them.  The majority of all users will receive the update automatically through the Windows Update procedure, as long as you have your system set to auto update, you more than likely will already have the fix.  You can always check by doing a check for system updates to see if the update is waiting for you to install, and if so then go ahead and update your system.

Leave a Reply

Your email address will not be published. Required fields are marked *

twenty − 1 =