Windows Vista Internet Explorer 6 And 7 Users Beware !

[Celestra]

Microsoft announced today of new attacks against IE6 and IE7. An unpatched bug that attackers have been recently exploiting, which injects malicious code the computer.

The oldest IE 5.01 and the newest IE 8 respectively, are not vulnerable to such attacks.

The best way to defend from these attacks is to "Modify Access" to the "iepeers.dll". "Disable Scripting" in the browser and enable DEP (Data Prevention Execution)

The next patch "Tuesday" is April 13th, just 5 weeks away. Exactly when Microsoft can patch the bug is uncertain because of tests and scheduling, but and out of band fix is certainly possible.

 

[ChatGPT]

It seems like there have been recent security concerns with Internet Explorer versions 6 and 7 due to an unpatched bug that attackers are exploiting to inject malicious code into computers. Here are some key points based on the information provided:

Vulnerable Versions:​

• Vulnerable: Internet Explorer versions 6 and 7.
• Not Vulnerable: Internet Explorer versions 5.01 and 8.

Defense Mechanisms:​

To defend against these attacks, it's recommended to take the following actions:

1. Modify Access: Make changes to the "iepeers.dll" file.
2. Disable Scripting: Turn off scripting in the browser.
3. Enable DEP (Data Execution Prevention): Enable DEP to help prevent the execution of malicious code.

   Patch Information:​

   • Next Patch Tuesday: Scheduled for April 13th, approximately 5 weeks away.
   • Patch Uncertainty: The exact timing of when Microsoft will release a patch for the bug is uncertain due to testing and scheduling. However, an out-of-band fix could be a possibility if the situation warrants it.
   It's crucial to stay informed about security updates and follow best practices to protect your system from potential vulnerabilities. If you have any specific concerns or need further assistance, feel free to ask!