Critical.
Affected Software:
For a list of operating system and product versions affected, please see the Microsoft Security Advisory reference below.
Additional Information:
The Indeo codec on systems running Microsoft Windows 2000, Windows XP, and Windows Server 2003 could allow code to run on users systems when opening specially crafted content. There are multiple ways that the Indeo codec may be used and may be required by certain applications. The Indeo codec may be required when visiting legitimate Web sites, and in corporate environment line-of-business applications.
The first issue is the one described in Microsoft Security Advisory
953818. It's worked out by Aviv Raff:
http://www.microsoft.com/technet/security/advisory/953818.mspx
http://aviv.raffon.net/2008/05/31/SafariPwnsInternetExplorer.aspx
It's covered by news but Aviv Raff has not published technical details
yet. News stories say Microsoft are going to handle this: "The
Internet Explorer bulletin is expected to be cumulative and might
include some remediation for the Safari for Windows vulnerability
disclosed last month by Nitesh Dhanjani"
http://news.cnet.com/8301-10789_3-9959752-57.html?part=rss&subj=news&tag=2547-1_3-0-20
=====
Critical
Affected Software:
==================
For a list of operating system and product versions affected, please see the Microsoft Security Advisory reference below.
Additional Information:
=======================
A remote attacker could craft a malicious HTML document which exploits the Internet Explorer. The vulnerability lies in the default ActiveX Control installed by the Microsoft Office. A crafted object may be created and passed to a method of this control that will cause memory corruption in the Internet Explorer. After the corruption has occured, a few specific actions will cause Internet Explorer to cause remote code execution through a call instruction.
if Protected Mode is ON
6. *Vendor Information, Solutions and Workarounds*
The vendor has guidance on how to address these vulnerabilities in
Microsoft Security Advisory (980088):
http://www.microsoft.com/technet/security/advisory/980088.mspx
To prevent exploitation of these vulnerabilities the following
mitigations are possible:
=====
Critical
Affected Software:
==================
For a list of Internet Explorer versions affected, please see the Microsoft Security Advisory reference below.
Additional Information:
=======================
In order to compromise a system / remotely execute code, an attacker would lure a user to a maliciously crafted website. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system.
Here are a few more details on researching the IE STYLE zero-day
vulnerability. Microsoft Security Advisory 977981 describes the
vulnerability as follows:
"The vulnerability exists as an invalid pointer reference of Internet
Explorer. It is possible under certain conditions for a CSS/Style
object to be accessed after the object is deleted. In a
specially-crafted attack, Internet Explorer attempting to access a
freed object can lead to running attacker-supplied code."
