MS08-078 - Critical Internet Explorer security update now available
Posted
Wednesday, December 17, 2008 7:18 PM
by
hwaldron
Most home users are most likely set for automatic updates and should apply this critical security when prompted. This IE patch will prevent malicious exploits from being installed by simply visiting a website with this attack code present (e.g., this new exploit is automatically invoked with no required action by the user other than visiting the site).
If you manually download and update patches, the FAQ section of the bulletin recommends that IE be first updated with the latest cumulative patch.
QUOTE FROM FAQ SECTION OF BULLETIN
Question -- Is this a cumulative security update for Internet Explorer?
Answer -- No. This out-of-band security update is not cumulative. To be fully protected, customers should apply this update after applying the most recent cumulative security update for Internet Explorer. This update, MS08-078, will be included in a future cumulative security update for Internet Explorer.
MS08-078 - Special Internet Explorer security release now available
http://www.microsoft.com/technet/security/bulletin/ms08-078.mspx
Internet Explorer 960714 is released
http://isc.sans.org/diary.html?storyid=5515
Original Advisory
http://www.microsoft.com/technet/security/advisory/961051.mspx