Security Update for HTML Help Control Helps Blunt IE Attack Vectors

Microsoft released several security updates today – MS05-001, MS05-002 and MS05-003. MS05-001 has a fix for a remote code execution issue affecting the HTML Help Control.  MS05-002 contains a fix for the “X-Focus” issues.  MS05-003 has a fix for a remote code execution issue with Indexing Services The first two are rated “critical” and the third is…

8

Internet Explorer Developer Center

Today we relaunch the Internet Explorer Developer Center on MSDN. You can find this at the relatively easy to remember URL http://msdn.microsoft.com/ie and is a portal for developers using Internet Explorer technologies. On the developer center we highlight technologies and events and link to reference material, articles and other essential information. The Developer Center is…

65

New IE Security Update for IE6 SP1 and IE6 (but not IE6 in XPSP2 or Windows Server 2003)

Today we released a security update for IE, MS04-040.  This fixes a heap-based buffer overflow that allows remote execution (see CAN-2004-1050 for more details on the specifics of the issue).  Full details on the security update can be found in the security bulletin.  If you are running IE6 SP1 or IE 6 I strongly suggest…

21

A fresh IE security update

The information published in this post is now out-of-date.—IEBlog Editor, 20 August 2012 Earlier this week we released the latest security update for IE, MS04-038. We’ve been working on this since XPSP2 shipped, and it’s nice to see it made available to customers on Windows Update. This update addresses, among other issues, the drag &…

27

IE in Windows Server 2003 SP1 and Windows XP 64-bit edition v2003

With XPSP2 out the door, we’re turning our attention to bringing our latest security enhancements to upcoming Windows releases. Next up: Windows Server 2003 SP1 and Windows XP 64-bit edition v2003, which are both currently in Beta. Both these platforms will receive the same treatment as XPSP2 did for IE: they’ll get all our security…

36

IE add-ons in Marketplace

The information published in this post is now out-of-date and one or more links are invalid.—IEBlog Editor, 20 August 2012 Hi, I’m Gary Schare and I run the product management team for IE.  This includes defining and communicating the IE value proposition for all customer segments and helping the product team with long-term product strategy. …

35

New Internet Explorer Community Site

We’ve just launched a new Community site for Internet Explorer to help support end users. This is linked from the main Internet Explorer page on www.microsoft.com. It includes links to other Internet Explorer sites, downloads and hints and tips. This site is focused on providing resources to end users but we also have sites with information…

22

IE in Windows XP SP2

Hi, I’m Tony Chor, the Group Program Manager for the Internet Explorer team. As you may know, we’ve been working hard on IE for Windows XP Service Pack 2, and we signed off on it last week. You can get a very detailed description of the changes on MSDN. (This is lovingly referred to internally…

174

MS04-025

The information published in this post is now out-of-date.—IEBlog Editor, 12 September 2012 There’s a new security update for IE available. You can find the security bulletin here http://www.microsoft.com/technet/security/bulletin/MS04-025.mspx   and the Knowledge Base article here http://support.microsoft.com/default.aspx?kbid=867801 Candidly, I’d like to write in depth about the vulnerability, different approaches we thought of in defending against…

76