Internet Explorer - Logo

Microsoft patcht Lecks in Internet Explorer

Während der Patch-Dienstag im Februar, Microsoft hat Lasten von Lecks in Internet Explorer gepatcht. Probleme in Windows und Forefront Security wurden behoben. Two of the seven updates that were released, wurden im letzten Moment angekündigt.

It is MS14-010 und MS14-011, die Mitteilungen sind. MS14-010 behebt insgesamt 24 Sicherheitslücken im Internet Explorer, deren Anfälligkeit war bereits bekannt, bevor das Update erschienen. Hingegen, gäbe es keine Exploits in Umlauf, um diese Schwachstellen ausnutzen. Update MS14-011 is intended for a critical vulnerability in the VBScript Scripting Engine, for the vulnerabilities for VBScript and Internet Explorer it was possible for a attacker to execute arbitrary code on the victims computer.

The update for MS14-007 fixes a vulnerability in Direct2D, allows an attacker to execute arbitrary code when a hacked or malicious site is visited. The last critical update is released for Microsoft Forefront Protection for Exchange. A vulnerability in the security ensured that an attacker could execute arbitrary code as a specially prepared e-mail was scanned.

The other three updates that are released for Windows made it possible for an attacker to increase hisadministrativerights or to retrieve certain personal data and perform a Denial of Service attack. The updates can be downloaded from Windows Update or using the Automatic Update Feature in Windows.