Microsoft Warns IE Users of Security Threat

by CXOtoday Staff    Jul 07, 2009

Microsoft Corp. has warned about a serious computer security vulnerability that allows hackers to remotely take control of victims’ machines. Microsoft is yet to fix the problem.

The vulnerability, coined as "zero day" vulnerability by Microsoft, affects a part of its software used to play video. The problem arises from the way the software interacts with Internet Explorer, which opens a hole for hackers to tunnel into, said a source.

People are wooed to a hacked site when a link in a spam email is clicked, and a user can be victimized by simply visiting any hacked web in the WWW, according to security experts.

Microsoft urged vulnerable users to disable the problematic part of its software, which can be done from Microsoft’s Web site, while the company works on a " patch" - or software fix - for the problem.

Microsoft rarely departs from its practice of issuing security updates the second Tuesday of each month. When the Redmond, Washington-based company does issue security reminders at other times, it’s because the vulnerabilities are very serious.