Security Alert: New Internet Explorer risk arises and Windows worm returns

IT pros should take steps to address new vulnerabilities that surfaced this week: A new Internet Explorer flaw and the return of a new version of a known Windows worm.

IE flaw

Name: Internet Explorer vulnerability
Rank: Critical
What it does: Internet Explorer vulnerability may allow installation of malicious programs
Means of transmission: Compromised Web sites use Active X flaw to install programs
How to recognize: Presence of kk32.dll or surf.dat files
Who is at risk: Internet surfers using Internet Explorer

Security brief

A computer science researcher has warned that a patch issued by Microsoft to address internet explorer vulnerabilities http://ct.com.com/click?q=11-l8diI2~9W8rxppN7F0Z0uHEeq5Gz addresses only part of the problems. Jelmer Kuperus said that the latest vulnerability and the original he identified exist in the ActiveX library. The Microsoft patch is designed to protect PCs running Internet Explorer from flaws that could allow access to PCs through the Web browser. Microsoft reports that they are working on a series of updates in coming weeks that will provide customers with additional protection.




Microsoft has posted Details on the download.jet security issue Act now, if you are using Internet Explorer, go here for full instructions

http://www.microsoft.com/security/incident/download_ject.mspx

..................................