A Tale of Two Vulnerabilities
It was the best of browsers, it was the worst of browsers…
This is something that Microsoft says is diligently researching this issue and will take the appropriate action to stop any susceptibility within their programs. Until then here’s a couple things you can do to insure that your not duped by an unscrupulous html page:
1. Disable Active Script Support. You can do this from your IE interface. Simply go to Tools/Options/security/Internet then find and disable “Active Script Support”
2. Uncheck “Hide file extensions for known file types”. This needs to be done in Windows. Go to Start/Control Panel and select “Tools” from the top of the Window select “Folder options” then click the “View” tab, from there scroll down until you see the option to “Hide extensions for known file types” and make sure it’s unchecked.
This should take care of it until Microsoft comes out with a patch. This is a newly discovered vulnerability and is really nothing more than a delivery method for potential viruses. So keep your IE buttoned up tight, and you should be fine.
Stay safe out there.