IE bugs keep coming By Kevin Poulsen, SecurityFocus Posted: 10/07/2003 at 07:41 GMT Microsoft issued a patch Wednesday for a critical vulnerability in most versions of Windows that gives attackers remote control of a user's machine though Internet Explorer. But if the results of a new survey are any guide, most users won't install it. The bug is a buffer overflow in an HTML conversion library used by a number of Windows programs, including Internet Explorer, and by extension Outlook and Outlook Express. To exploit it, an attacker tricks a victim into visiting a specially-crafted malicious Web page, or -- a more likely approach -- sends an Outlook user an HTML-formatted e-mail with the attack code embedded within. Read more here: http://www.theregister.co.uk/content/55/31656.html =A9 The Register. ~*~*~*~*~ To unsubscribe from our list send an email to hackfix-virusnews-request@xxxxxxxxxxxxx?Subject=unsubscribe. For a complete list of email commands for our list send an email to ecartis@xxxxxxxxxxxxx with a subject line of "info hackfix-virusnews" without the quotes. ~*~*~*~*~