Microsoft IE -- another horrible, horrible, closed-source FAIL

IE the sky is falling

''SOS! You're all in danger!''

Microsoft (NASDAQ:MSFT) tells us more about last week's Internet Explorer vulnerability. In an updated 'advisory,' Satya's gang tell us how to work around the problem until they've managed to issue a fix -- unless you're on Windows XP, natch.

Assuming you don't want to descent into the ninth circle of hell, known as EPM, let's all deregister vgx.dll, K?

In IT Blogwatch, bloggers make like Chicken Little. Again.

Your humble blogwatcher curated these bloggy bits for your entertainment.

 

In case you've been living under a rock, Gregg Keizer fills us in:

Criminals are exploiting an unpatched and critical vulnerability in Internet Explorer (IE). ... A vulnerable browser can be hacked as soon as its user surfs to the URL. ... All currently-supported versions of IE are at risk.

The IE flaw was the first post-retirement bug affecting XP. And that's important.  MORE

 

Tony Bradley speaks peace unto XP users:

The first big security threat for Windows XP users has arrived...the first of many open wounds...because the OS is no longer supported by Microsoft.

Windows XP hails from a bygone era where every user was emperor of his own machine [with] complete Admin rights...which means that this attack—and most other malicious attacks out there—will enable the attacker to have carte blanche.

Regardless of this particular zero day flaw, it’s just a good idea to switch to a supported browser like Firefox or Chrome. ... There’s no point in willingly putting your PC at more risk than you are just by choosing to continue using an unsupported operating system.  MORE

 

And Larry Seltzer positively fizzes with joy:

Microsoft has updated their advisory...to clarify workarounds.

One workaround is to use Enhanced Protected Mode, a feature of Internet Explorer 10 and 11 on 64-bit systems. ... Another workaround [is] to unregister...VGX.DLL.  MORE

 

Here's a slightly cynical nurb432:

Just in time for XP to go out of support for most people, now you get this 'well publicized' bug that wont get patched.  MORE

Computerworld Blogs Newsletter

Subscribe now to the Blogs Newsletter for a daily summary of the most recent and relevant blog posts at Computerworld.  

FREE Computerworld Insider Guide: IT Certification Study Tips
Editors' Picks
Join the discussion
Be the first to comment on this article. Our Commenting Policies