Jump to content

Microsoft Mistakenly Includes Vulnerability In Patch Tuesday


Matsuda

Recommended Posts

vulnerability_sign.png


Microsoft has updated the details of one of its security bulletins released on Patch Tuesday, saying that it actually fixed 9 vulnerabilities, not 10 as it previously stated.

The MS13-080, described as a Cumulative Update for Internet Explorer, was supposed to address memory corruption vulnerabilities in several versions of the browser, as ZDNet points out.

According to Microsoft, the CVE-2013-3871 vulnerability is scheduled to be addressed in a future security update, which means that at least one security flaw still exists in Internet Explorer.

“Remote code execution vulnerabilities exist when Internet Explorer improperly accesses an object in memory. These vulnerabilities could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user,” the original bulletin was reading.

The company has since updated the advisory to inform that only nine vulnerabilities have been patched by security bulletin MS13-080.





Source

Link to comment
Share on other sites


  • Replies 3
  • Views 1.3k
  • Created
  • Last Reply

Top Posters In This Topic

  • sanjoa

    1

  • psyko666

    1

  • Matsuda

    1

  • MidnightDistortions

    1

Popular Days

Top Posters In This Topic

MidnightDistortions

Every time i hear something about MS now (including their famous update mess)

Link to comment
Share on other sites


  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...