Welcome to the Microsoft Security Response Center Blog! : Information on Reports of IE 7 Vulnerability

Amazing. The FUD around the browser and vulnerabilities is intense. It takes a programmer/technologist to really know. The rest is hype. 

Information on Reports of IE 7 Vulnerability

Hi, this is Christopher Budd.

We’ve gotten some questions here today about public reports claiming there’s a new vulnerability in Internet Explorer 7. This is an issue that we have under investigation and so we have some technical information we can share about the issue.

These reports are technically inaccurate: the issue concerned in these reports is not in Internet Explorer 7 (or any other version) at all. Rather, it is in a different Windows component, specifically a component in Outlook Express. While these reports use Internet Explorer as a vector the vulnerability itself is in Outlook Express.

While we are aware that the issue has been publicly disclosed, we’re not aware of it being used in any attacks against customers.

We do have this under investigation and are monitoring the situation closely and we’ll take appropriate action to protect our customers once we’ve completed the investigation.

I hope that helps to clarify.

Christopher

Source: Welcome to the Microsoft Security Response Center Blog! : Information on Reports of IE 7 Vulnerability

Advertisements

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s