Security vendor eEye Digital Security has created a temporary patch that protects end users and enterprises from an unpatched vulnerability in Internet Explorer

The vulnerability is caused by an error in the way that the browser processes a 'createTextRange' call on a radio button. The bug could allow attackers to take control of a system by luring victims to a specially crafted website.

Attackers are actively exploiting the flaw and Microsoft has hinted that it might release an out of cycle patch.

The Redmond giant had advised users to disable Active Scripting in their browser settings (instructions can be found at Microsoft's support website). 

Microsoft has not certified the eEye patch. The security firm recommended that users try disabling Active Scripting first and use its workaround only if this does not work.

"EEye's patch is not meant to replace the forthcoming Microsoft patch, but to provide immediate protection in lieu of an available fix," said Marc Maiffret, co-founder and chief hacking officer at the security company.

"In fact, eEye has engineered the patch to automatically remove itself when Microsoft's official patch comes through."

More stories on these topics:
Permalink  Comments  Forward
what do you think?
Click here for more Post your comment
Click here for more Send an email to the Computing editor at feedback@computing.co.uk
Reader comments for this story
Post your comment Post your comment   What is this?
Like this story? Spread the news by clicking a link:   Post this to Delicious del.icio.us     Post this to Digg digg this     Post this to reddit reddit!

related content
latest news
barclays logo
Finance
BulletStop playing games with staff, Barclays told
Workers' union fears for job security of the bank's back-office workers in Poole  18 Jul 2008
Whitehall
Security
BulletHMRC missing disc investigation cost nearly £500,000
Tories critical over government waste  18 Jul 2008
a car
Manufacturing
BulletMichelin outsources application development
Logica will provide software development and support under three-year contract  18 Jul 2008
Click here for more More news
latest in depth
London Docklands
Software
BulletFinancial firms set for more virtualisation
The technology is thriving in uncertain economic climate, but adoption plans vary  17 Jul 2008
Datacentre
Strategy
BulletFirms taking datacentres outside M25
Facilities outside the City are in high demand as companies investigate the benefits of moving their datacentres  17 Jul 2008
Motorway
Hardware
BulletOn the right road to IT success
Highways Agency information director Denise Plumpton reveals her strategy  17 Jul 2008
Click here for more More in depth

Advertising Marketplace

Sponsored links

Featured jobs

Helpdesk Manager
Leeds, United Kingdom | UKCRN
Helpdesk Manager, Leeds You'll have the opportunity to develop a dedicated Help Desk Service so that services are clear, accountable and responsive to customer needs.  Planning, monitoring and controlling the use of helpdesk resources, you'll ... more >
Intranet Support & Development Officer
London, United Kingdom | COI
Intranet Support & Development Officer, London, £29,507 - £36,004 + Excellent Benefits  We're looking for an experienced and proactive professional to support our current intranet and support the procurement of a new corporate CMS. As ... more >
Technical Author
United Kingdom | UKCRN
Technical Author, Leeds You'll be part of a team within our UKCRN Coordinating Centre, working closely with different members of staff on specific initiatives and also with core clinical and management staff. You will liaise ... more >
Business Relationship Manager (Finance)
United Kingdom | London Borough of Sutton
Business Relationship Manager (Finance), Based at Civic Offices, £ 41,790 - £ 44,373  (PO 7)   Fixed Term to 31st March 2009 The IT service has four Business Relationship Managers (BRM); each one responsible for delivering and developing ... more >
Click here for more  More job opportunities