Microsoft name the day for "Aurora" patch

Filed Under: SophosLabs, Vulnerability

As Chet mentioned yesterday Microsoft are going to release an out-of-band patch for the IE zero-day vulnerability used in the "Aurora" hacks. Today Microsoft have confirmed that the patch will be released on January 21.

Microsoft's announcement :
http://www.microsoft.com/technet/security/bulletin/ms10-jan.mspx

Although the initial exploits seen in the wild for this vulnerability target IE 6 and Windows XP, security researchers (and cybercriminals too) have been hard at work extending the reach of the exploits to newer versions of both IE and Windows.

As with any security patch, our advice is to apply it as soon as you can.

,

You might like

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

About the author

Richard manages SophosLabs' operations in the United States. His principal security interests are endpoint security and user education. When he's not worrying about digital perils he enjoys singing, much to the distress of his cat, whose name does not feature in any of his passwords.