back to article Hellish XML demon exorcised from Windows, IE bug stays

Microsoft released two "critical" patches and five "important" security updates on Tuesday - but none of the fixes address a zero-day vulnerability in Internet Explorer discovered two weeks ago. The two critical patches tackle a remote-code execution vulnerability in the Windows Print Spooler (MS13-001) and similarly serious …

COMMENTS

This topic is closed for new posts.
  1. Anonymous Coward
    Anonymous Coward

    Good ol' Micro$haft

    I wonder if this'll take them ten years, like the font rendering exploit in their kernel.

    Meanwhile, looks like Samsung has sorted that Exynos bug which RICHTO got so excited about:

    http://www.sammobile.com/2013/01/03/galaxy-s-iiis-latest-software-update-fixes-exynos-security-exploit-sudden-death-issue-too/

    3 wks... and over Christmas & new year B-)

    1. Anonymous Coward
      Anonymous Coward

      Re: "Micro$haft"

      Stop that, AC. You made my dickhead detector go so far off the scale that it snapped.

      1. Anonymous Coward
        Anonymous Coward

        Re: "Micro$haft"

        Credit where credit's due... I thought it rather appropriate in this context.

        Smile, your micro's been $hafted!

  2. This post has been deleted by a moderator

    1. Anonymous Coward
      Facepalm

      Re: Another Microsoft Security Fail

      Yeah. They can take a leaf out of the Linux book, and fix it after a mere 8 years!

      No need to defend Linux as: (1) I am being light hearted; (2) I don't care if it took 50 years to fix that particular bug, as I (generally) use BSD, not Linux.

  3. Anonymous Coward
    Anonymous Coward

    "Of course ... you could also just update your browser to Internet Explorer 9 or 10"

    Yeah - if your PC isn't controlled to the hilt by an IT department that thinks Win XP Pro and IE8 are bleeding-edge technology, and that highly technical users aren't competent to install or upgrade anything.

    [AC to protect the guilty.]

    1. dogged

      Re: "Of course ... you could also just update your browser to Internet Explorer 9 or 10"

      In that instance, AC, if you get infected while at work then it's the IT department's fault for a) not screening the malicious page or office document that infected you and b) using a 10 year old OS.

      So relax.

    2. Tom 13
      Flame

      Re: controlled to the hilt by an IT department that thinks Win XP Pro and IE8

      Downvoted because I'm the low level HelpDesk Monkey who gets called in to fix crap when you "highly technical" users frack it up while ignoring company policy. Also because it some of you other "highly technical" programmers who shaft us with home grown software that causes us to KEEP users on IE8 and Java 1.5.16.

      Not anonymous because I know who where the bodies are.

  4. NorthernCoder
    Paris Hilton

    Sources..?

    "the so-called 'Mad Woman in the Attic' hole"

    Why is it called so, and by whom?

    1. Androgynous Crackwhore
      Gimp

      Re: Sources..?

      Anthony Perkins?

  5. historymaker118
    Trollface

    Still using IE?

    If you are still using internet explorer 6 then you deserve to get hacked!

  6. Ian Emery Silver badge
    FAIL

    Why did my XP Pro box crash 5 TIMES.....

    trying to install these updates - and blue screened after installing (and rebooting) each one individually.

    (And strangely muted the audio output).

    M$ need to get their $hit together - must try harder!!!!

    1. dogged

      Re: Why did my XP Pro box crash 5 TIMES.....

      Because you're using a ten year-old OS? Maybe?

      Honestly, if you're that much of a cheapskate, install something free.

      1. Paul Crawford Silver badge

        Why should the OS age matter in terms of being patched correctly? If anything, the older code should be better understood and so less likely to have problems.

      2. Charlie Clark Silver badge

        Re: Why did my XP Pro box crash 5 TIMES.....

        @dogged

        Why not use it? It's still officially supported my Microsoft until next year.

        1. Anonymous Coward
          Anonymous Coward

          Re: Why did my XP Pro box crash 5 TIMES.....

          Indeed... after TEN YEARS in production use, with three "service packs" and God only knows how many patches, shouldn't the code be approaching something resembling maturity/stability by now?

          1. dogged
            FAIL

            Re: Why did my XP Pro box crash 5 TIMES.....

            @AC - are you suggesting it's immature and unstable?

            (I bet this AC doesn't know that some linux fixes - for example, I speak as one involved in a long-term love/hate relationship with debian - can take up to nine years. I bet this AC just wants upvotes from the "we hateses micro$haft lolz0rs crowd).

    2. Tom 13

      Re: Why did my XP Pro box crash 5 TIMES.....

      Run a rootkit scanner on your system.

  7. arctic_haze Silver badge
    Stop

    Mr. Mador's advice to upgrade to nternet Explorer 9 or 10 or Chrome or Firefox works only 50% for XP users.

    There are no IE 9 or 10 for Win XP.

    But that's not my problem. I use the other half.

  8. david 12 Bronze badge

    MSXML

    Garghhh, not another MSXML patch. It took me years to fix up the broken MSXML patches around here -- and one laptop was fixed by replacement with an Apple laptop.

    What is it with MSXML? MSXML patches have given me more trouble than the rest all put together.

    BTW, any answer to my previous question: Is there an exploit for the MS Explorer bug that does not involve the abuse of FLASH?

This topic is closed for new posts.

Biting the hand that feeds IT © 1998–2019