Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Re-Re-Releases IE Patch

Posted by ryuzaki0 on from the this-time-for-sure dept.

uniquebydegrees writes, "InfoWorld reports that on Tuesday Microsoft quietly released the second update for MS06-042. This is the cumulative patch for IE that actually introduced a new security hole into systems that applied the update. Microsoft re-released the patch back in August, but it now turns out that the updated patch had yet another vulnerability similar to the first, once again discovered by folks at eEye Digital Security. As with the previous hole, it concerned the handling of long URLs from web sites using HTTP 1.1 with compression."

11 of 77 comments (clear)

  1. Bugger! by ackthpt · · Score: 3, Interesting

    I just spent 4 hours downloading and installing patches over the weekend and now I've got more...

    I'm just glad I don't use IE, that's all.

    i'd really like to know why it downloaded all those outlook patches, considering i don't have that installed and have never had it installed...

    --

    A feeling of having made the same mistake before: Deja Foobar
    1. Re:Bugger! by this+great+guy · · Score: 3, Funny
      DIR C:\PROGRA~1\OUTLOO~1

      Remind me of an old joke...
      Windows 95: comes with built-in support for long filena~1.

  2. Re-Re-Releases IE Patch! by celardore · · Score: 4, Funny

    Th-th-th-that's all folks!

    1. Re:Re-Re-Releases IE Patch! by Overly+Critical+Guy · · Score: 3, Interesting

      It's amazing the U.S. economy has come to rely on something so unreliable. Think about it.

      --
      "Sufferin' succotash."
  3. Since . . . by OverlordQ · · Score: 4, Informative

    Well, you complain about Microsoft not fixing the patch in 3 attempts when you CANT EVEN TELL THE DIFFERENCE BETWEEN A PATCH AND A VULNERABILITY.

    MS06-042 is the Security Bulletin.
    KB918899 is the KB id w/ Patch.

    --
    Your hair look like poop, Bob! - Wanker.
  4. Huh by theophylline · · Score: 3, Funny

    I downloaded the IE patch a while ago and it works great. It's called Firefox.

    1. Re:Huh by vertinox · · Score: 2, Insightful

      But less people use Firefox, so they don't write as many exploits for it.

      But more webservers use Apache over IIS, so why are there more eploits for IIS?

      --
      "I am the king of the Romans, and am superior to rules of grammar!"
      -Sigismund, Holy Roman Emperor (1368-1437)
    2. Re:Huh by WhiteWolf666 · · Score: 2, Funny

      What, the grandparent post, or IIS?

      --
      WhiteWolf666 an exBush supporter. All you new-school,compassionate,save the children Republicans can rot in hell
  5. re-re-re-release. by Koragnar · · Score: 5, Funny

    When did George Lukas join Microsoft?

  6. My patch always works! by WillAffleckUW · · Score: 2, Interesting

    1. Remove all shortcuts to IE
    2. Install Firefox and/or Opera (I like both, Opera for email, Firefox for everything else)
    3. ...
    4. Profit!

    --
    -- Tigger warning: This post may contain tiggers! --
  7. Great, but when will they stop the crashes? by Software · · Score: 2, Informative
    It's nice to know that they're re-fixing the security hole, but how about fixing the browser crashes? From http://support.microsoft.com/kb/923996/ :
    When you visit a Web page that uses a custom pop-up object, Microsoft Internet Explorer 6 closes unexpectedly and generates an error in the Mshtml.dll file. This problem occurs after you install security update 918899 on a Windows XP Service Pack 2 (SP2)-based or a Windows Server 2003 Service Pack 1 (SP1)-based computer. A hotfix is available if you are severely affected by this problem. Otherwise, we recommend that you wait for the next cumulative security update for Internet Explorer.