Microsoft to release emergency IE patch tomorrow

The patch fixes the Google-attack bug

Microsoft will be releasing patch MS10-002 for Internet Explorer tomorrow, Jan. 21, 2010, at about 10 a.m. PST. The out-of-band patch fixes the critical bug responsible for the widely publicized attacks against Google and other corporations. It is a cumulative patch, meaning that it includes all patches for other vulnerabilities that Microsoft was planning on including during the next Patch Tuesday.

Microsoft says it continues to see some successful attacks in the wild, although it says successful attacks have only been against Internet Explorer 6.

Microsoft has also updated Security Advisory 979352 to include:

  • Technical details to address additional products that may be affected by this vulnerability.
  • Guidance related to reports of proof of concept (POC) code that bypasses Data Encryption Protection (DEP).

Microsoft will host a public webcast on Thursday, January 21 at 1:00 p.m. PST during which time the company will present information on the bulletin and answer customer questions. Customers can register here.

Like this post? Check out these others.

Plus, visit the Microsoft Subnet web site for more news, blogs, podcasts. Subscribe to all Microsoft Subnet bloggers. Sign up for the bi-weekly Microsoft newsletter. (Click on News/Microsoft News Alert.)

Follow All Microsoft Subnet bloggers on Twitter

Follow Julie Bort on Twitter
Join the Network World communities on Facebook and LinkedIn to comment on topics that are top of mind.

Copyright © 2010 IDG Communications, Inc.

IT Salary Survey: The results are in