boardadmin 0 Posted July 3, 2004 Report Share Posted July 3, 2004 Hallo allerseits, zur Zeit kursiert ein Exploit Code für den Internet Explorer namens Download.Ject. Daher ist ein Update der MS DAC Komponente dringend anzuraten: Adodb.stream provides a method for reading and writing files on a hard drive. This by-design functionality is sometimes used by web applications. However, when combined with known security vulnerabilities in Microsoft Internet Explorer, it could allow an internet web site to execute script from the Local Machine Zone (LMZ). This occurs because the ADODB.Stream object allows access to the hard drive when hosted within Internet Explorer. Critical Update for Microsoft Data Access Components - Disable ADODB.Stream object from Internet Explorer (KB870669) http://www.microsoft.com/downloads/details.aspx?FamilyId=4D056748-C538-46F6-B7C8-2FBFD0D237E3&displaylang=de Dateiname: Windows-KB870669-x86-ENU.exe Downloadgröße: 104 KB Veröffentlichungsdatum: 02.07.2004 Version: 870669 Quote Link to comment
boardadmin 0 Posted July 4, 2004 Author Report Share Posted July 4, 2004 Weiterführende Informationen zu Download.Ject: Microsoft untersucht zurzeit Berichte über ein Sicherheitsproblem mit dem Namen „Download.Ject“, das Benutzer der Windows-Komponenten Microsoft Internet Information Services 5.0 (IIS) und Microsoft Internet Explorer betrifft. („Download.Ject“ ist auch unter den Namen „JS.Scob.Trojan“, „Scob“ und „JS.Toofeer“ bekannt.) http://www.microsoft.com/germany/ms/security/incident/download_ject.mspx Quote Link to comment
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.