Microsoft will be releasing patch MS10-002 for Internet Explorer tomorrow, Jan. 21, 2010, at about 10 a.m. PST. The out-of-band patch fixes the critical bug responsible for the widely publicized attacks against Google and other corporations. It is a cumulative patch, meaning that it includes all patches for other vulnerabilities that Microsoft was planning on including during the next Patch Tuesday.
Microsoft says it continues to see some successful attacks in the wild, although it says successful attacks have only been against Internet Explorer 6.
Microsoft has also updated Security Advisory 979352 to include:
- Technical details to address additional products that may be affected by this vulnerability.
- Guidance related to reports of proof of concept (POC) code that bypasses Data Encryption Protection (DEP).
Microsoft will host a public webcast on Thursday, January 21 at 1:00 p.m. PST during which time the company will present information on the bulletin and answer customer questions. Customers can register here.
Like this post? Check out these others.
Plus, visit the Microsoft Subnet web site for more news, blogs, podcasts. Subscribe to all Microsoft Subnet bloggers. Sign up for the bi-weekly Microsoft newsletter. (Click on News/Microsoft News Alert.)
- 7 big IT orgs that showed Microsoft the door
- Most business will adopt Windows 7 by 2011, but prefer Google's cloud
- Watch out Microsoft: GNOME is poised to have a killer 2010
- Microsoft Exchange/Outlook 2010 UC Mobile and Voicemail Features (Beta) Release!
- Windows 7 Remote Admin Tools: Controls Windows Server 2008 from your Windows 7 desktop
- Secrets of Exchange Server 2010
- Unified Messaging (Voicemail) in Exchange 2010
- Microsoft's data cache technology, code-named Velocity, speeds app performance
Follow All Microsoft Subnet bloggers on Twitter
Follow Julie Bort on Twitter