(imported topic written by CSL2012)
Security Advisory 2719615 Fixlet Request
Can a fixlet be provided for Microsoft Security Advisory 2719615? The Microsoft Fix It was released (6/12/2012).
A Microsoft Fix it (50897) for the Vulnerability in Microsoft XML Core Services is available
Affected Software (MSXML Core Services):
• Microsoft Windows XP
• Windows Server 2003
• Windows Vista
• Windows 7
• Windows Server 2008
• Windows Server 2008 R2
Summary:
Microsoft is aware of active attacks that leverage a vulnerability in Microsoft XML Core Services 3.0, 4.0, 5.0, and 6.0. The vulnerability could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker would have no way to force users to visit such a website. Instead, an attacker would have to convince users to visit the website, typically by getting them to click a link in an email message or Instant Messenger message that takes them to the attacker’s website. The vulnerability affects all supported releases of Microsoft Windows, and all supported editions of Microsoft Office 2003 and Microsoft Office 2007.
More Information: http://support.microsoft.com/kb/2719615 & http://technet.microsoft.com/en-us/security/advisory/2719615
Thanks,
Chi S. Li