Microsoft patch MS06042 introduces remote exploit hole??

Security research firm eEYE Digital Security is warning Microsoft customers that a recent patch, MS06042, actually opened a new, remotely exploitable hole in the operating system, even while it patched other holes in the Internet Explorer Web browser.

According to aeEYE Chief Hacking Officer Marc Maiffret, 042, a cumulative security update for IE, introduced a new exploitable vulnerability on Windows XP Service Pack 1 and IE 6.0. If you've forgotten already, that's the patch that caused IE browsers to crash when viewing certain Web sites that use data compression and Web coding standard, HTTP 1.1. InfoWorld Tech Watch | InfoWorld | Unconfirmed: Microsoft patch introduces remote exploit hole?? | August 22, 2006 11:59 AM | By Paul Roberts

Linked by shanmuga Wednesday, 23rd August 2006 12:26AM