|
Microsoft vulnerabilities not fixed
|
|
Secunia Advisory:
|
SA7579
|
|
|
Release Date:
|
2002-11-22
|
|
Last Update:
|
2002-11-27
|
|
Popularity:
|
18,392 views
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | Microsoft Internet Explorer 5.01
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 6.x
Microsoft Outlook 2000
Microsoft Outlook 2002
Microsoft Outlook 97
Microsoft Outlook 98
Microsoft Outlook Express 5
Microsoft Outlook Express 5.5
Microsoft Outlook Express 6
|
|
|
Secunia CVSS-2 Score:
|
Available in Secunia business solutions 
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities
|
|
| Advisory Content (Page 2 of 3) | [ 1 ] [ 2 ] [ 3 ] | |
|
Solution:
Outlook and Outlook Express are not vulnerable IF you have deployed "Outlook Email Security Update" or run Outlook 2002 or Outlook Express 6.
Outlook Email Security Update:
http://office.microsoft.com/Downloads/2000/Out2ksec.aspx
Internet Explorer 5.0, 5.5 and 6 are affected by MS02-065
The Microsoft Bulletin MS02-065 states that the user should:
Remove all trusted publishers, including Microsoft.
This however will prompt the user for an accept every time a page tries to download an ActiveX component, the user then needs to verify the certificate chain manually. While this solution works and is good security practice, it may become annoying to some users and other users may not have the knowledge required to manually verify a certificate chain.
The trusted publishers in Internet Explorer may be removed under "Tools">"Internet Options">"Content tab">"Certificates">"Publishers" in this dialog click "Trusted Publishers", then remove each certificate.
Internet Explorer 5.5 and 6 are affected by the vulnerabilities not fixed in MS02-66
The only safe workaround is to disable "Active Scripting" in the "Internet Zone" and add trusted sites which requires Active Scripting to the "Trusted sites" zone. While this works, many users may be annoyed by this.
We expect Microsoft to publish revised bulletins soon. In the meanwhile you need to consider taking other measures to secure your network. Secunia find it likely that these vulnerabilities will be exploited on a broad scale soon.
Other protective measures could be to use alternate browsers and/or install a proxy server which allows you to filter malicious javascript, ActiveX components and other content / file types which could pose a risk to your network.
Changelog:
25/11-2002 Microsoft has revised MS02-066 with information regarding how to stop websites from executing files using HTML Help:
http://support.microsoft.com?kbid=810687
Change Page:
[ 1 ] [ 2 ] [ 3 ]
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
