New attacks leverage unpatched IE flaw, Microsoft warns
March 12 2011
Due to a reporting error, the story, "New attacks leverage unpatched IE flaw, Microsoft warns," published Friday confused two similar Windows flaws, both of which were disclosed in January, by two different parties. The bug being used in the new attacks was disclosed anonymously on the Full Disclosure mailing list. The story has been corrected on the wire.
The second headline now reads:
The bug was disclosed in January, but it's now being used in targeted attacks
The first paragraph has been changed to read:
An Internet Explorer flaw made public two months ago is now being used in online attacks.
The fifth paragraph reads:
The flaw lies in the Windows MHTML (Mime HTML) parsing software used by Internet Explorer, and affects all currently supported versions of Windows. It was disclosed on the Full Disclosure mailing list in January.
The seventh and ninth paragraphs have been removed.
Sours From
View more news |