Microsoft breaks schedule for early IE patch

Kevin Fogarty, News Director

Microsoft bypassed its monthly Patch Tuesday schedule this week to release a fix for a flaw in the Vector Markup Language (VML) that the SANS Internet Storm Center and other virus watchdogs flagged

    Requires Free Membership to View

as unusually dangerous.

A Microsoft spokesperson said the company moved up the Oct. 10 release date to head off an exploit that takes advantage of how recent versions of Internet Explorer and Outlook handle malformed VML tags. One particular malformation can cause a buffer overflow and allow arbitrary code to run on the machine affected.

Details of the flaw and the patch procedure are available.

To read the original version of this story, visit

There are Comments. Add yours.

TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: