Update Your Internet Explorer Or Change Your Internet Browser or Change Your Operating System
http://blog.harisfazillah.info/2011/02/update-your-internet-explorer-or-change.html http://fb.me/EKoNbrWP MA-265.012011 : MyCERT Alert - Critical Vulnerability in Microsoft Windows http://www.mycert.org.my/en/services/advisories/mycert/2011/main/detail/801/index.html Malaysian please contact Cyber999 for more information. http://www.mycert.org.my/en/services/report_incidents/cyber999/main/detail/443/index.html OWASP Malaysia Local Chapter http://www.owasp.org/index.php/Malaysia The vulnerability exists due to the way MHTML interprets MIME-formatted requests for content blocks within a document. It is possible under certain conditions for this vulnerability to allow an attacker to inject a client-side script in the response of a Web request run in the context of the victim's Internet Explorer. The script could spoof content, disclose information, or take any action that the user could take on the affected Web site on behalf of the targeted user. An attacker who successfully exploits this vulnerability will be able to execution of arbitrary attacker-supplied script code in the context of Internet Explorer. This may allow the attacker to obtain sensitive information, spoof content, or perform arbitrary actions on a targeted website in the context of the victim. ***** Windows users please update your Internet Explorer or use others alternative like ***** Mozilla Firefox http://www.mozilla.com/en-US/firefox/ Google Chrome http://www.google.com/chrome More options to Internet Explorer alternative. Alternative Browser Alliance http://alternativebrowseralliance.com/browsers.html Browse Free Browse Happy http://browsehappy.com/ Viewable With Any Browser http://www.anybrowser.org/campaign/ Linux your choice of new and future Operating System http://www.linux.com/distrocentral *** References *** Microsoft Windows MHTML script injection vulnerability http://www.kb.cert.org/vuls/id/326549 Microsoft warning over browser security flaw http://www.bbc.co.uk/news/technology-12325139 *** Archive *** http://blog.harisfazillah.info/2011/02/update-your-internet-explorer-or-change.html MOSC Survey 2011 Awareness Of OSS Certification among ICT Profession online survey http://survey.mosc.my/mosc-survey-2011-awareness-oss-cert Malaysia Open Source Software Conference 2011 MOSC2011 http://fb.me/mosc2011 -- Malaysia Open Source Software Conference 2011 MOSC2011 http://fb.me/mosc2011 My Network http://www.facebook.com/Bukan.Sekadar.Internet.Sahaja -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. _______________________________________________ OSCC Knowledge Bank Mailing List * To visit MAMPU Opensource on the web, go to: http://opensource.mampu.gov.my * To visit OSCC Knowledge Bank on the web, go to: http://www.oscc.org.my * To unsubscribe from this group, please go here: http://lists.oscc.org.my/mailman/listinfo/oscc-discuss http://www.facebook.com/pages/Cyberjaya-Malaysia/OSCC-MAMPU/66729159214 "OSCC Discuss Mailing Lists is intended to solely promote, discuss and announce OSS related topics and promotion of non-OSS matters is strictly prohibited. The implementation of the Malaysian Public Sector OSS Master Plan brings strategic, technological, economical and social benefits to Malaysia."
