eEye released IE patches

Security firm eEye Digital Security, yesterday, released a patch for Microsoft's Internet Explorer to counter attacks by exploiting the newly discovered security holes in the browser.

Steve Manzuik, eEye's security product manager, said the "unofficial" patch blocks all requests for access to faulty components in Internet Explorer, thereby preventing malicious websites from exploiting exploits. Exploiting these security holes.

Although eEye patches can protect computers from attacks, the company still recommends that users only install these patches when there are no other solutions available. 'Organizations should only install this patch if they are not able to disable Active Scripting in IE,' Manzuik said. This is also Microsoft's recommendation for users.

' And this patch is not a replacement for Microsoft's upcoming patch. This is only a temporary solution against exploiting security holes , 'Manzuik said.

eEye decided to release this patch at the request of customers. However, eEye still provides this patch for everyone to use through its website.

Meanwhile, Microsoft recommends not installing eEye patches. ' We have not yet tested this patch, ' said Stephen Toulouse, an administrator who manages Microsoft's Security Response Center program. ' We cannot recommend users to install this patch because we have not tested it . Customers should consider the risks when installing anything like this on their system .'

This security error relates to Internet Explorer processing "createTextRange ()" functions in web pages. Since the bug was discovered and made public at the end of last week, there have been more than 200 exploited exploited websites discovered on the Internet so far. Most of these sites primarily exploit security vulnerabilities to install spyware, hijack remote systems through trojan malware .

EEye patches are compatible with Windows systems with IE 5 or IE 6.

HVD