Critical Update for Internet Explorer (Out of band release)
Microsoft has released an out of band critical update for Microsoft Internet Explorer. This security update describes vulnerabilities in those components and controls that have been developed using vulnerable versions of the Microsoft Active Template Library (ATL).
This security update also resolves three privately reported vulnerabilities in Internet Explorer. These vulnerabilities could allow remote code execution if a user views a specially crafted Web page using Internet Explorer. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. Please note that systems joined to the LSU Active Directory should automatically receive the appropriate update when available.
Remember to close all applications at the end of work day today, as security updates may require a restart of your machine.
Additional Information / Tools:
Microsoft Security Bulletin - http://www.microsoft.com/technet/security/bulletin/ms09-034.mspx
US-CERT Technical Alerts - http://www.us-cert.gov/cas/techalerts/
Microsoft Baseline Security Analyzer - http://www.microsoft.com/technet/security/tools/mbsa2_1/default.mspx
This security update also resolves three privately reported vulnerabilities in Internet Explorer. These vulnerabilities could allow remote code execution if a user views a specially crafted Web page using Internet Explorer. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. Please note that systems joined to the LSU Active Directory should automatically receive the appropriate update when available.
Remember to close all applications at the end of work day today, as security updates may require a restart of your machine.
Additional Information / Tools:
Microsoft Security Bulletin - http://www.microsoft.com/technet/security/bulletin/ms09-034.mspx
US-CERT Technical Alerts - http://www.us-cert.gov/cas/techalerts/
Microsoft Baseline Security Analyzer - http://www.microsoft.com/technet/security/tools/mbsa2_1/default.mspx
This announcement posted Tuesday, July 28, 2009