Bugtraq mailing list archives
Latest IE FIX from MS is a HOAX
From: pokee () MAXWELL EE WASHINGTON EDU (Aaron Spangler)
Date: Tue, 25 Mar 1997 12:45:04 PST
The Latest Internet Explorer Security Patch from Microsoft is a HOAX. I just installed the latest Internet Explorer Released by Microsoft Today (IE 3.02 - Mar25). It seems it is still COMPLETELY vulnerable to Bugs #4,#5 released earlier in the month even though it claims to fix them!!! Is Microsoft lying when they say it fixes the latest bugs? Try it our yourself. Download IE 3.02 from MS, and try it on one of the sites #4 http://www.ee.washington.edu/computing/iebug/ (For NT only) #5 http://www.efsl.com/security/ntie/ (For NT only) I have not even check bug #6 for win95, but it still may be vulnerable. #6 http://www.security.org.il/msnetbreak/ (bug#6 for Win95) - Aaron -- Aaron Spangler EE Unix System Administrator Electrical Engineering FT-10 pokee () ee washington edu University of Washington Phone (206) 543-8984 Box 352500 or (206) 543-2523 Seattle, WA 98195-2500 Fax (206) 543-3842
Current thread:
- buffer over in hp-ux 10.20 kernel C0WZ1LL4 () NETSPACE ORG (Mar 21)
- Re: New Sendmail bug Jeffrey Moyer (Mar 24)
- Re: New Sendmail bug Gonzo Granzeau (Mar 24)
- Re: New Sendmail bug Claude Scarpelli (Mar 25)
- Latest IE FIX from MS is a HOAX Aaron Spangler (Mar 25)
- Re: Latest IE FIX from MS is a HOAX Michael H. Warfield (Mar 25)
- ANNOUNCE : NTCrack v1.0 Jonathan Wilkins (Mar 27)
- There are more loopholes in LPD Patrick Powell (Mar 28)
- symlink bug in tin/rtin NetRunner (Mar 29)
- Re: symlink bug in tin/rtin Nelson Murilo (Mar 29)
- ANNOUNCE : NTCrack v2.0 Jonathan Wilkins (Mar 29)
- Re: New Sendmail bug Gonzo Granzeau (Mar 24)
- more sendmail poop *Hobbit* (Mar 25)
- Reported Sendmail 8.8.4 Exploit gshapiro () SENDMAIL ORG (Mar 25)
- minor vulnerability in ELM Dmitry E. Kim (Mar 26)
- FreeBSD-SA-97:02: Buffer overflow in lpd Aleph One (Mar 26)
- Re: New Sendmail bug Jeffrey Moyer (Mar 24)