Latest IE patch can crash browsers

Microsoft's latest security patch for Internet Explorer (IE) can cause the Web browser to crash when viewing Web pages that...

Microsoft's latest security patch for Internet Explorer (IE) can cause the Web browser to crash when viewing Web pages that contain a certain VBScript directive. Microsoft has acknowledged the problem and said Web site administrators will need to take action.

"This issue does not pose a security threat to users. This issue affects stability. Normal operation can be restored by restarting IE," Microsoft said in a statement.

"Microsoft Product Support Services has been working with customers to implement a workaround that addresses a problem in which patched IE browsers could crash when viewing certain pages containing a specific VBScript directive," the statement continued.

The way to fix the problem in the short term will be to tweak the coding on Web pages that contain this execScript directive, Microsoft said, adding that it was working on an updated patch and that an article explaining the issue and the workaround procedure will be posted on the Microsoft Web site.

Internet advertising company DoubleClick has advised its customers in e-mail not to install Microsoft's patch, a company representative said. DoubleClick's ad management system is accessed through the Web and relies on scripting.

Microsoft released the "cumulative" patch that fixes six holes in IE versions 5.01, 5.5 and 6.0 last Monday. The software maker gave the patch a "critical" rating and urged all users to immediately install it. The set of patches fixes holes that could allow an attacker to take control over a user's computer.

The patch can be found on Microsoft's TechNet Web site at:
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS02-005.asp

Read more on Microsoft Windows software

SearchCIO
SearchSecurity
SearchNetworking
SearchDataCenter
SearchDataManagement
Close