Bofra finally fixed

Share this article:

Businesses open to the iframe vulnerability in Microsoft’s internet explorer can finally protect themselves from the Bofra worm.

Responding to the critical status of the vulnerability, Microsoft issued a patch to protect users of their older operating systems.

Until yesterday (Tuesday) the thousands of users who had not updated to, or were not using Windows SP2 remained vulnerable.

Users of Microsoft Windows 98, XP SP1 and Windows 2000 are urged to update as soon as possible. Those operating on these systems and using the Opera or Mozilla browsers are not affected by the exploit. If infected the Bofra worm allows external users to access the computer, sends itself to email addresses stored on the computer and downloads code form the internet.

The Bofra worm marks a highpoint in vulnerability exploitation. Within four days of the iframe problem being announced it was out in the wild and is seen by some as an indication of the final step towards zero-day exploits.

www.microsoft.com/technet/security/bulletin

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

More in News

Beazley: employee errors root of most data breaches, but malware incidents cost ...

Insurance firm Beazley analyzed more than 1,500 data breaches it serviced between 2013 and 2014.

Apple issues seven updates, fixes more than 40 vulnerabilities in iOS 8, OS 10.9.5

Apple issues seven updates, fixes more than 40 ...

In one of its infrequent "Update Surprisedays," Apple plugged holes, boosted security and added features.

Canadian telecom co. Telus unveils first transparency report

The company received more than 100,000 government requests for customer data last year.