Microsoft issues quick fix for IE8 vulnerability

It’s difficult for us to advise organizations to spend money, but sometimes it has to be done.

In this case, if you haven’t already done so it’s time to do some heavy thinking about getting off Windows XP.

It’s a fine operating system, but it is stuck with Microsoft’s Internet Explorer 8, an outdated browser. Only WinVista, Win7 and Win8 can use the safer IE9 and IE10. Smart organizations still on WinXP insist staff use Firefox or Chrome.

Globally, an estimated 45 per cent of desktops were still using XP a year ago, although that includes consumer and corporate environments.  IDC Canada believed that as of last September about 30 per cent of of commercial portable PCs in Canada were running WinXP (with just over 61 per cent on Win7.)

It matters because as 2012 closed Microsoft issued a quick fix for a vulnerability that has been discovered in IE8, 7 and 6.

The vulnerability, Microsoft said, may corrupt PC memory in a way that could allow an attacker to execute code by convincing a user to visit an infectedWeb site.
 
(Image from Shutterstock)

An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

This patch will have to do until Microsoft delivers a formal fix.

Naked Security, the blog of security firm Sophos, said one Web site is known to have carried the vulnerability, that of the Council on Foreign Relations.

It’s a respected New York-based independent think tank that would be visited by academics, reporters, bureaucrats from around the world and politicians – an ideal target.
 
RELATED CONTENT

Would you recommend this article?

Share

Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.


Jim Love, Chief Content Officer, IT World Canada

Featured Download

Howard Solomon
Howard Solomon
Currently a freelance writer, I'm the former editor of ITWorldCanada.com and Computing Canada. An IT journalist since 1997, I've written for several of ITWC's sister publications including ITBusiness.ca and Computer Dealer News. Before that I was a staff reporter at the Calgary Herald and the Brampton (Ont.) Daily Times. I can be reached at hsolomon [@] soloreporter.com

Featured Articles

Cybersecurity in 2024: Priorities and challenges for Canadian organizations 

By Derek Manky As predictions for 2024 point to the continued expansion...

Survey shows generative AI is a top priority for Canadian corporate leaders.

Leaders are devoting significant budget to generative AI for 2024 Canadian corporate...

Related Tech News

Tech Jobs

Our experienced team of journalists and bloggers bring you engaging in-depth interviews, videos and content targeted to IT professionals and line-of-business executives.

Tech Companies Hiring Right Now