-----BEGIN PGP SIGNED MESSAGE----- Internet Security Systems Protection Brief July 30, 2004
Multiple Vulnerabilities in Microsoft Internet Explorer Summary: Microsoft has released an unscheduled security bulletin MS04-025 which addresses multiple security issues within the Internet Explorer web browser. There are three critical vulnerabilities in this update, all of which may lead to remote system compromise. Business Impact: By exploiting any of these vulnerabilities it is possible for an attacker to run arbitrary code on target systems. Successful exploitation can be leveraged to gain complete controlover target systems, and may lead to malware installation,exposure of confidential information, or further network compromise. In order to exploit these vulnerabilities, a victim would have to visit a website hosting malicious code or preview or open an email containing a malicious GIF or BMP image. For the complete X-Force Protection Alert, please visit: http://xforce.iss.net/xforce/alerts/id/179 ______ About Internet Security Systems (ISS) Internet Security Systems, Inc. (ISS) is the trusted security expert to global enterprises and world governments, providing products and services that protect against Internet threats. An established world leader in security since 1994, ISS delivers proven cost efficiencies and reduces regulatory and business risk across the enterprise for more than 11,000 customers worldwide. ISS products and services are based on the proactive security intelligence conducted by ISS� X-Force� research and development team � the unequivocal world authority in vulnerability and threat research. Headquartered in Atlanta, Internet Security Systems has additional operations throughout the Americas, Asia, Australia, Europe and the Middle East. Copyright (c) 2004 Internet Security Systems, Inc. All rights reserved worldwide. This document is not to be edited or altered in any way without the express written consent of Internet Security Systems, Inc. If you wish to reprint the whole or any part of this document, please email [EMAIL PROTECTED] for permission. You may provide links to this document from your web site, and you may make copies of this document in accordance with the fair use doctrine of the U.S. copyright laws. Disclaimer: The information within this paper may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information. X-Force PGP Key available on MIT's PGP key server and PGP.com's key server, as well as at http://www.iss.net/security_center/sensitive.php Please send suggestions, updates, and comments to: X-Force [EMAIL PROTECTED] of Internet Security Systems, Inc. -----BEGIN PGP SIGNATURE----- Version: 2.6.2 iQCVAwUBQQp9hjRfJiV99eG9AQHcwwP/W7CRyjcsDzIwOljjxswlG0IHfRgzbMMw a+IwSQCrfyJp3tRMoVsXbjZQ14/pb+Qxt8HV5RbluKPAV1m1baC+/Su8F8sUKNMN RcjPCSxfJwMz2O6ghpIMKWvWA7NZux4U1LQv3f3EMIr9DPyl+hH7s2LwdCdM0wwA 1GHxANClNxo= =CYFu -----END PGP SIGNATURE----- _______________________________________________ ISSForum mailing list [EMAIL PROTECTED] TO UNSUBSCRIBE OR CHANGE YOUR SUBSCRIPTION, go to https://atla-mm1.iss.net/mailman/listinfo/issforum To contact the ISSForum Moderator, send email to [EMAIL PROTECTED] The ISSForum mailing list is hosted and managed by Internet Security Systems, 6303 Barfield Road, Atlanta, Georgia, USA 30328.
