Vulnerability affects all Internet Explorer versions
A currently-exploited unpatched (but see update below) security hole in Internet Explorer affects ALL versions of the browser, which makes it much more serious than originally believed when the zero-day exploit was announced two days ago.
Microsoft updated the security advisory on the vulnerability, which could allow remote code execution. Microsoft recommends setting the Internet zone security setting to “high” and using access control lists to disable Ole32db.dll to provide the most effective protection, according to CNET, which provides further information.
The vulnerability, a heap overflow within the XML parser, was reported on December 10 by Bojan Zdmja of the SANS Internet Storm Center.
(Note added December 19, 2008: Microsoft has recently released a patch, out of cycle, for the vulnerability.)
-Bill at Cheshire Cat Photo™
You can view higher-resolution photos (*generally* 7-30 megabytes, compressed) at the Cheshire Cat Photo™ Pro Gallery on Shutterfly™, where you can also order prints and gifts decorated with the photos of your choice from the gallery. Apparel and other gifts decorated with some of our most popular photos can be ordered from the Cheshire Cat Photo™ Store on CafePress®. Both Shutterfly™ and CafePress® ship to most international locations worldwide! If you don’t see what you want or would like to receive an email when new photos are up on the site, send us an email at info@cheshirecatphoto.com.
