Home / More flaws in Microsoft’s IE

More flaws in Microsoft’s IE

Software security provider, GFI, has discovered a security flaw in Microsoft’s Internet Explorer application that allows macros to be executed automatically on a victim's machine.

Software security provider, GFI, has discovered a security flaw in Microsoft’s Internet Explorer application that allows macros to be executed automatically on a victim's machine.

Such a flaw allows with IE allows a malicious user to run arbitrary code on a target machine as it attempts to view a website or an HTML email.

"It can be most dangerous to open an email which uses this exploit because it will run on any computer having Internet Explorer and Microsoft Access 2000, which forms part of MS Office. Our tests on this email threat showed that, in Outlook 2000, the embedded VBA code was executed automatically even within the high security and restricted zone," explains GFI security engineer, Sandro Gauci.

"Such an email that contains malicious code could do almost anything on the recipient's machine," she adds.

Having discovered the flaw GFI notified the Redmond giant who, with much practiced haste, issued an appropriate advisory – Microsoft security bulletin number MS02-005.

Follow us to get the most comprehensive technology news in UAE delivered fresh from our social media accounts on Facebook, Twitter, Youtube, and listen to our Weekly Podcast. Click here to sign up for our weekly newsletter on curated technology news in the Middle East and Worldwide.

REGISTER NOW | Webinar Event | Security you can bank on – Safeguarding the Middle East’s financial sector

Presented in partnership with security and network specialist Cybereason, the second in the three part webinar series will bring together a panel of experts to discuss how banks and financial institutions are evolving their service offering while simultaneously staying one step ahead of the cyber criminals who seek to bring their operations crashing to the ground.

CHANNEL AWARD 2018