Security Advisory 2887505 and Microsoft Fix it

Corrine · Sep 17, 2013

Microsoft released Security Advisory 2887505 which relates to an issue with Internet Explorer.

It is important to note that there are a limited number of targeted attacks which are specifically directed at Internet Explorer 8 and 9. The issue, however, could potentially affect all supported versions of IE.

As described by Dustin Childs in the below-referenced MSRC Blog post,

"This issue could allow remote code execution if an affected system browses to a website containing malicious content directed towards the specific browser type. This would typically occur when an attacker compromises the security of trusted websites regularly frequented, or convinces someone to click on a link in an email or instant message."

Links to the Microsoft Fix it for IE 8 and IE9 as well as additional mitigations and references are available in my blog post at Security Advisory 2887505 and Microsoft Fix it.

Corrine · Sep 18, 2013

Note: The Fix it solution applies only 32-bit versions of Internet Explorer.

Temmu · Sep 20, 2013

thanks corrine!
interesting to see that solution ahead of a patch.

Corrine · Sep 20, 2013

Microsoft has done that before between patch Tuesdays. Since it was reported that there are a limited number of targeted attacks directed at Internet Explorer 8 and 9, it was a good move to get the Fix it out ASAP.

Search

Search

Security Advisory 2887505 and Microsoft Fix it

Corrine

Administrator,
Microsoft MVP,
Security Analyst

Corrine

Administrator,
Microsoft MVP,
Security Analyst

Temmu

Well-known member

Corrine

Administrator,
Microsoft MVP,
Security Analyst

Security Advisory 2887505 and Microsoft Fix it

Corrine

Administrator, Microsoft MVP, Security Analyst

Corrine

Administrator, Microsoft MVP, Security Analyst

Temmu

Well-known member

Corrine

Administrator, Microsoft MVP, Security Analyst

Administrator,
Microsoft MVP,
Security Analyst

Administrator,
Microsoft MVP,
Security Analyst

Administrator,
Microsoft MVP,
Security Analyst