Slashdot Mirror

← Back to Stories (view on slashdot.org)

IE Download.Ject Exploit Fixed

Posted by simoniker on from the round-and-round dept.

Saint Aardvark writes "Just in time for the weekend, the Internet Storm Center is reporting that Microsoft is providing a fix for the Download.Ject vulnerability that hit IE late last month. The press statement says that it'll hit Windows Update later today..."

21 of 421 comments (clear)

  1. That reminds me... by DaHat · · Score: 5, Funny

    That assumes I remember to run Windows Update... Why do I have to do it myself Microsoft! I want automatic and forceful patch downloading and installation! Sure, you could throw in an extra DRM patch here or there... but I don't care, I'm lazy!

    --
    Help Brendan pay off his student loans
  2. Get the fix early here. by Saeed+al-Sahaf · · Score: 2, Funny
    The press statement says that it'll hit Windows Update later today...

    O get the fix early, HERE.

    --
    "Who are in control, they are not in control of anything - they don't even control themselves!" - Glen Beck
  3. Obvious link missing by nizo · · Score: 2, Funny

    Fix can be downloaded here.

    --
    I Am My Own Worst Enemy
  4. In Other News... by Snagle · · Score: 5, Funny

    The Department Of Homeland Security said it is safe to go back to using Internet Explorer as your main browser...for about 10 minutes, when the next exploit will be released.

  5. The Vulnerability by lousyd · · Score: 5, Funny
    the Download.Ject vulnerability that hit IE late last month. The press statement says that it'll hit Windows Update later today..."

    So, the vulnerability will hit Windows Update later today? How do they know? (Other than the fact that Microsoft is running security at the Windows Update site, of course.)

    --
    If aspiration is a virtue, achievement cannot be a vice.
  6. All right!!! by k4_pacific · · Score: 5, Funny

    That means all the sys-admins will have to work late on a Friday night making sure its installed.

    Excellent timing.

    --
    Unknown host pong.
  7. I'm Not A Religious Person But... by Anonymous Coward · · Score: 1, Funny

    I'd recommend a little prayer before every time you click on a link in Internet Explorer.

  8. I think my brain just exploded. by Ira+Sponsible · · Score: 2, Funny

    This is completely incomprehensible. I'm using Mozilla Dangerphoenix, and ms let me get the download with no hassles at all. Of course it's not one of their usual updates, but I still find it hard to believe that they haven't broken the link for non-IE browsers like they do for the rest of their site. Unless the "Configuration Change" is really just an extension to "fix" my Mozilla Pornopony to behave just like IE. DAMN YOU MICROSOFT, WHEN CAN I TRUST YOU!!!

    --
    1.Netcraft confirms:In Soviet Russia all your base welcomes a beowolf cluster of CowboyNeal overlords. 2.? 3.Profit!!1!
  9. Re:Got it, but.. by drkhwk · · Score: 1, Funny

    We won't even get into the fact that my online banking instantaneously loads on IE yet takes several /MINUTES/ to load in Firefox.

    Then you should switch banks, not browsers.

  10. Coming soon... by sleighb0y · · Score: 5, Funny

    Download.Ject.A
    Download.Ject.B
    Download.Ject.C
    Download.Ject.D..............

  11. Re:Um by strictnein · · Score: 2, Funny

    First post:
    That assumes I remember to run Windows Update... Why do I have to do it myself Microsoft! I want automatic and forceful patch downloading and installation!

    Second post:
    I use Windows Update religiously and do not have the auto update feature running

    Are you an idiot? Seriously.

    --
    Casual Games/Downloads
  12. Re:FYI by Tackhead · · Score: 5, Funny
    > This by-design functionality is sometimes used by web applications. However, when combined with known security vulnerabilities in Microsoft Internet Explorer, it could allow an internet web site to execute script from the Local Machine Zone (LMZ).

    Ah, once again, "Security Zones" rears its ugly head. Wasn't integrating the browser into the operating system a brilliant move?

    Ah, once again, the assumption that users are using Web-based apps in a trusted environment such as the office LAN, rather than the Real World(tm), rears its ugly head. Services listening on 135? 137? 139? 445? 5000? But how will you share files, printers? Doesn't everyone want to share every file with every other user on their network segment? Doesn't everyone want to automatically sniff out and configure their machine to work with every network-attached peripheral?

    Open Letter to Windows design team, in monosyllables so you get the fucking point, because you sure as fuck haven't over the past nine years

    Code. Code belong on hard drive. Code tell a C.P.U. to do stuff. You get code, you save code, you tell box to run code! O.S. do what code say, so if you get owned, is your fault cuz you tell O.S. to run code! This just fine!

    Web Pages. Made of H.T.M.L. You get by click link. to make words and pics on screen. You got H.T.M.L.? I.E. for turn the H.T.M.L. into pics on screen. I.E. good for show text. I.E. good for show click link. I.E. good for show boobs.

    Heap Big Clue: I.E. MADE OF CODE. I.E. CODE RUN ON LOCAL MACHINE. THEREFORE ALL ZONE ARE LOCAL. You no grok? Here two by four. Hit self in head until you grok, dumb ass.

    This isn't chocolate and peanut butter. Executables and Web Content are not two great tastes that taste great together. Just because you can do something, doesn't mean you should.

    Security "zones" are one of the dumbest fucking ideas ever to come down the pipe.

  13. Obligatory Monty Python quote by harley_frog · · Score: 3, Funny
    I think this quote best reflect the state of denial that Microsoft is currently in:

    Black Knight: Have at you.
    King Arthur: You are indeed brave, sir knight, but the fight is mine.
    Black Knight: Oh, had enough eh?
    King Arthur: Look, you stupid bastard. You've got no arms left.
    Black Knight: Yes I have.
    King Arthur: Look.
    Black Knight: Just a flesh wound.

    --
    It's all fun and games until someone loses the key to the handcuffs.
  14. I'm already patched! by SnarfQuest · · Score: 5, Funny

    Microsoft e-mailed me the patch some time ago, like they do with all their other security updates. I install them all as they come in, and keep my system virus free!

    --
    Who would win this election: Andrew Weiner vs Andrew Weiner's weiner.
  15. I Demand the Editors Change the Title... by maggeth · · Score: 2, Funny
    "Fixed" is a strong word, I suggest an alternate title for this article:

    "Microsoft Kind of Does Something Vaguely Related to Download.Ject Exploit"

    --
    Slashdot in 5 Paragraphs
  16. Dear Microsoft, by stienman · · Score: 5, Funny

    Dear Microsoft,
    I am writing concerning downloading the most recent Windows Updates. I am unable to obtain them as your site requires IE, and the government recently suggested that users cease use of IE.

    Please help!

     -Adam

  17. Re:If parent is true, please mod up! by Sheepdot · · Score: 2, Funny

    No offense taken.

    I'm not exactly the most trustworthy person anyway, I've been compromising computers for the last 5 years.

  18. IE Patches no worse than viruses? by MooseByte · · Score: 5, Funny

    "Second, I have never -- that means NOT EVER -- seen an IE fix that broke my machine worse than a virus would."

    Hmmm. Well THERE's a ringing endorsement....

  19. Re:FYI by Anonymous Coward · · Score: 2, Funny

    Guy make joke. You too serious. Here two by four. Hit self until grok.

    Ian

  20. Re:FYI by Anonymous Coward · · Score: 1, Funny

    Worry not. He no see boobs but from I.E..

  21. Re:not a troll by ssstraub · · Score: 2, Funny

    Except IE isn't ready for prime time either, and it's at 6.0.