IE Download.Ject Exploit Fixed

← Back to Stories (view on slashdot.org)

IE Download.Ject Exploit Fixed

Posted by simoniker on Friday July 2, 2004 @05:31AM from the round-and-round dept.

Saint Aardvark writes "Just in time for the weekend, the Internet Storm Center is reporting that Microsoft is providing a fix for the Download.Ject vulnerability that hit IE late last month. The press statement says that it'll hit Windows Update later today..."

7 of 421 comments (clear)

Min score:

Reason:

Sort:

Re:Get the fix early here. by nizo · 2004-07-02 05:39 · Score: 0, Redundant

I would have posted this before you did, but ironically firefox died on me for the first time in months. Doh! (Then again, I am running an older version, time to upgrade!)

--
I Am My Own Worst Enemy
I have a feeling by Punboy · 2004-07-02 05:39 · Score: 1, Redundant

that MS doesnt care about security, only publicity. They don't care until it affects their marketshare, THEN they fix it.

Everyone switch to Linux! Then MS will fix Windows!

--
If you like what I've said here, and want to read more, go to http://www.krillrblog.com
tool late by eclectus · 2004-07-02 05:41 · Score: 0, Redundant

too late. I've already switched

--
This signature is a waste of 42 characters
Re:Um by Sexy+Commando · 2004-07-02 05:52 · Score: 1, Redundant

FYI, The items you mentioned are not in the Critical Updates section, which means they can only be installed manually.
And you can always check the installation hisory on the Windows Update website, that is, if this can satisfy your desire to "know exactly what is being put on my system."
If not, many people prefer glueing their eyeballs to the monitors to read every single compiler outputs from Gentoo emerges.
The fix... by NeoGeo64 · 2004-07-02 06:33 · Score: 0, Redundant

Here's a link to the real fix.
Too Late Microsoft. by jskline · 2004-07-02 07:02 · Score: 0, Redundant

Too Late Microsnot!! I have removed links to, and changed permissions to the executables in 3 of the machines at my home for IE. Windows XP has been weened. Mozilla user now.

Whats even nicer now is dumb ass vendors that rely on activeX controls to support their stuff now has no support in IE... but we don't care what they think.

You know too all that almost all of these patches and updates that come down the pike are because of broken IE!!!! I don't use Win Media player either so why am I messing with this anymore???!!!

Disable IE, Media Player, and automatic updates and your set!!! Use Winamp or iTunes for Windows, and Mozilla or Opera for browser and a decent firewall (Sygate/Zonealarm), and a decent AV product like Grisoft. Don't use norton cause they call up IE components.. at least mine did. It's gone now!

Cheers;
Jeff

--
All content in this message is copyright (c) 2008. All rights reserved. RIAA is prohibited here.
Not using IE isn't enough.... by Eric+Damron · 2004-07-02 07:20 · Score: 0, Redundant

Being that Micro$oft insisted on integrating IE into there OS; a move that many feel is motivated by an ongoing anti-competitive strategy, consumers cannot protect themselves by simply not using IE.

Many subsystems of IE are used by many other parts of Micro$oft's OS. That's what is meant by "integrated." This could allow other vector's of attack if IE is not patched and patched and patched ...

You made your fricking bed Micro$oft... Now your users will have to sleep in it.

--
The race isn't always to the swift... but that's the way to bet!