I posted a note previously about an unpatched vulnerability in older versions (6 and 7) of Microsoft’s Internet Explorer. This was initially being exploited only in targeted attacks, but last week a pre-packaged exploit appeared on the Internet. Microsoft has now released a temporary fix to protect against this type of attack. There are two parts to the fix, both of which can be found by scrolling down the page. The first, labeled “Fixit Soluton for Peer Factory”, is applicable to Windows XP and Server 2003 installations. The second, labeled “Fixit Solution for Data Execution Prevention”, is applicable to all Windows installations except Windows 2000.
To install either “Fixit”, just click on the button under “Enable this Fix”. IF you experience problems, the fix can be uninstalled by clicking the button under “Disable this Fix”. These steps will only work if you are accessing the Web site from the computer you wish to patch, using Internet Explorer. For other situations, you will have to download the patch “wizard” and then run it on the desired system.
[...] in Internet Explorer versions 6 and 7, which I have written about earlier this month. (I posted a note here about a temporary fix.) The fix, as is common for IE patches, will be cumulative, incorporating [...]